Free Access PaloAltoNetworks.PCCSE.v2022-04-18.q58 Practice Test (Page 11)

Question 46

A customer has a large environment that needs to upgrade Console without upgrading all Defenders at one time.
What are two prerequisites prior to performing a rolling upgrade of Defenders? (Choose two.)

A.an existing Console at version n-1

B.all Defenders set in read-only mode before execution of the rolling upgrade

C.additional workload licenses are required to perform the rolling upgrade

D.a second location where you can install the Console

E.manual installation of the latest twistcli tool prior to the rolling upgrade

Question 47

The Prisma Cloud administrator has configured a new policy.
Which steps should be used to assign this policy to a compliance standard?

A.Custom policies cannot be added to existing standards.

B.Create the Compliance Standard from Compliance tab, and then select Add to Policy.

C.Edit the policy, go to step 3 (Compliance Standards), click + at the bottom, select the compliance standard, fill in the other boxes, and then click Confirm.

D.Open the Compliance Standards section of the policy, and then save.

Question 48

A S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy "AWS S3 buckets are accessible to public" The policy definition follows:
config where cloud type = 'aws' AND api name='aws-s3api-get-bucket-acr AND json.rule="((((acl grants{?(@ grantee='AllUsers')] size > 0) or policyStatusisPubiic is true) and publicAccessBlockConfiguration does not exist) or ((ad.grantsp(@ grantee=='AII Users')] size > 0) and publicAccessBlockConfiguration ignorePubhcAds is false) or (policyStatus isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist" Why did this alert get generated?

A.network traffic to the S3 bucket

B.configuration of the S3 bucket

C.anomalous behaviors

D.an event within the cloud account

Question 49

An administrator sees that a runtime audit has been generated for a Container. The audit message is "DNS resolution of suspicious name wikipedia.com. type A".
Why would this message appear as an audit?

A.The process calling out to this domain was not part of the Container model.

B.The Layer7 firewall detected this as anomalous behavior.

C.This is a DNS known to be a source of malware.

D.The DNS was not learned as part of the Container model or added to the DNS allow list.

Question 50

Which type of compliance check is available for rules under Defend > Compliance > Containers and Images
> CI?

A.Container

B.Image

C.Host

D.Functions

Other Version: 1675PaloAltoNetworks.PCCSE.v2022-12-30.q79; 3118PaloAltoNetworks.PCCSE.v2022-06-18.q86; 40Palo-Alto-Networks.Trainingdump.PCCSE.v2021-11-19.by.nick.56q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50

Question 46

Question 47

Question 48

Question 49

Question 50

Download PDF File