The development team wants to block Cross Site Scripting attacks from pods in its environment. How should the team construct the CNAF policy to protect against this attack?

• A.create a Container CNAF policy, targeted at a specific resource, and they should set "Explicitly allowed inbound IP sources" to the IP address of the pod.
• B.create a Container CNAF policy, targeted at a specific resource, check the box for XSS attack protection, and set the action to alert.
• C.create a Container CNAF policy, targeted at a specific resource, check the box for XSS protection, and set the action to prevent.
• D.create a Host CNAF policy, targeted at a specific resource, check the box for XSS attack protection, and set the action to "prevent".

Comment: *

Name: *

Email: *

Verification: *

Given an existing ECS Cluster, which option shows the steps required to install the Console in Amazon ECS?

• A.Download and extract the release tarball
  Ensure that each node has it own storage for Console data
  Create the Console task definition
  Deploy the task definition
• B.Download and extract release tarball
  Download task from AWS
  Create the Console task definition
  Deploy the task definition
• C.The console cannot natively run in an ECS cluster.
  A onebox deployment should be used.
• D.Download and extract the release tarball
  Create an EPS file system and mount to each node in the cluster
  Create the Console task definition
  Deploy the task definition

Comment: *

Name: *

Email: *

Verification: *

Given a default deployment of Console, a customer needs to identify the alerted compliance checks that are set by default Where should the customer navigate in Console?

• A.Manage > Compliance
• B.Defend > Compliance
• C.Custom > Compliance
• D.Monitor > Compliance

Comment: *

Name: *

Email: *

Verification: *

You have onboarded a public cloud account into Prisma Cloud Enterprise. Configuration Resource ingestion is visible in the Asset Inventory for the onboarded account, but no alerts are being generated for the configuration assets in the account.
Config policies are enabled in the Prisma Cloud Enterprise tenant, with those policies associated to existing alert rules. ROL statements on the investigate matching those policies return config resource results successfully.
Why are no alerts being generated?

• A.The public cloud account is not associated with an alert rule.
• B.The public cloud account is not associated with an alert notification.
• C.The public cloud account does not access to configuration resources.
• D.The public cloud account does not have audit trail ingestion enabled.

Comment: *

Name: *

Email: *

Verification: *

Which policy type in Prisma Cloud can protect against malware?

• A.Event
• B.Data
• C.Config
• D.Network

Comment: *

Name: *

Email: *

Verification: *