1. Home
  2. Paloalto Networks
  3. PSE-Prisma Cloud Professional
  4. PSE-Prisma-Pro-24
  5. Palo Alto Networks System Engineer - Prisma CloudProfessional Questions and Answers

Pass the Paloalto Networks PSE-Prisma Cloud Professional PSE-Prisma-Pro-24 Questions and answers with CertsForce

 Paloalto Networks Exams      Go to Exam Detail      Get Premium Access
Viewing page 3 out of 4 pages
Viewing questions 21-30 out of questions
Questions # 21:

What does Prisma Cloud execute to change public cloud infrastructure when autoremediation is enabled?

Options:
A.

local scripts to public cloud APIs

B.

remote function calls to host agents

C.

third-party integration tools

D.

public cloud CLI commands

Expert Solution
Questions # 22:

Which statement applies to vulnerability management policies?

Options:
A.

Host and serverless rules support blocking, whereas container rules do not.

B.

Rules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.

C.

Policies for containers, hosts, and serverless functions are not separate.

D.

Rules are evaluated in an undefined order.

Expert Solution
Questions # 23:

What are two business values of Cloud Code Security? (Choose two.)

Options:
A.

consistent controls from build time to runtime

B.

prebuilt and customizable polices to detect data such as personally identifiable information (PII) in publicly exposed objects

C.

support for multiple languages, runtimes and frameworks

D.

continuous monitoring of all could resources for vulnerabilities, misconfigurations, and other threats

Expert Solution
Questions # 24:

The customer has an Amazon Web Services Elastic Computing Cloud that provides a service to the internet directly and needs to secure that cloud with a VM-Series NGFW.

Which component handles address translation?

Options:
A.

The server VMs have private use only (RFC 1918) IPs. Amazon's cloud infrastructure translates those addresses to publicly accessible IP addresses. The VM-Series NGFW has publicly accessible IP addresses.

B.

The server VMs have private use only (RFC 1918) IPs. The VM-Series NGFW translates those addresses to publicly accessible IP addresses.

C.

The server VMs and the VM-Series NGFW have private use only (RFC 1918) IPs. Amazons cloud infrastructure translates those addresses to publicly accessible IP addresses

D.

The servers and VM-Series NGFW have publicly accessible IP addresses for management purposes.

Expert Solution
Questions # 25:

Which type of Prisma Cloud Enterprise alert supports autoremediation?

Options:
A.

network

B.

audit

C.

anomaly

D.

config

Expert Solution
Questions # 26:

Which Resource Query Language (RQL) query searches for all Relational Database Service (RDS) instances that have a public IP address?

Options:
A.

config from cloud.resource where api.name = 'aws-rds-describe-db-instances' AND json.rule = storageEncrypted is false

B.

event from cloud.audit_logs where api.name = 'aws-rds-describe-db-instances' AND json.rule = publiclyAccessible is true

C.

config from cloud.resource where api.name = 'aws-rds-describe-db-instances' AND json.rule = publiclyAccessible is true

D.

config from cloud.resource where api.name = 'aws-ec2-describe-instances' AND json.rule = publiclyAccessible is true

Expert Solution
Questions # 27:

Which option is true about VM-Series NGFW templates available from the Palo Alto Networks GitHub repository?

Options:
A.

Palo Alto Networks provides full support if a valid support license is in place.

B.

Support for the templates is available through Professional Services from Palo Alto Networks.

C.

Unless otherwise noted, these templates are released under an as-is. best effort support policy.

D.

The author of the template provides full support as long as the PAN-OS version specific to the template is supported.

Expert Solution
Questions # 28:

What is the Palo Alto Networks recommended setting for the Prisma Cloud Training Model Threshold?

Options:
A.

Low

B.

Thorough

C.

High

D.

Baseline

Expert Solution
Questions # 29:

Which two statements are true about CloudFormation? (Choose two.)

Options:
A.

CloudFormation is a procedural configuration management tool.

B.

CloudFormation templates can be used on both Amazon Web Services and Microsoft Azure

C.

CloudFormation templates can be written in JSON or YAML

D.

CloudFormation is a declarative orchestration tool.

Expert Solution
Questions # 30:

A customer has just launched a Palo Alto Networks VM-Series NGFW into an Amazon Web Services VPC to protect a cloud hosted application. They are experiencing unpredictable results and have identified that the interfaces on the firewall are in the incorrect order

Which PAN-OS CLI command resolves this issue?

Options:
A.

set system setting mgmt-interface-swap enable yes

B.

set mgmt-interface settings swap yes

C.

set mgmt-interface swap yes

D.

set system setting mgmt-interface swap yes

Expert Solution
Viewing page 3 out of 4 pages
Viewing questions 21-30 out of questions