Which IAM Azure RQL query would correctly generate an output to view users who have sufficient permissions to create security groups within Azure AD and create applications?

• A.config from network where api.name = 'azure-active-directory-authorization-policy' AND json.rule = defaultUserRolePermissions.allowedToCreateSecurityGroups is false and defaultUserRolePermissions.allowedToCreateApps is true
• B.config from cloud.resource where api.name = 'azure-active-directory-authorization-policy' AND json.rule = defaultUserRolePermissions exists
• C.config where api.name = 'azure-active-directory-authorization-policy' AND json.rule = defaultUserRolePermissions.allowedToCreateSecurityGroups is true and defaultUserRolePermissions.allowedToCreateApps is true
• D.config from cloud.resource where api.name = 'azure-active-directory-authorization-policy' AND json.rule = defaultUserRolePermissions.allowedToCreateSecurityGroups is true and defaultUserRolePermissions.allowedToCreateApps is true

Comment: *

Name: *

Email: *

Verification: *

A customer does not want alerts to be generated from network traffic that originates from trusted internal networks.
Which setting should you use to meet this customer's request?

• A.Trusted Login IP Addresses
• B.Anomaly Trusted List
• C.Trusted Alert IP Addresses
• D.Enterprise Alert Disposition

Comment: *

Name: *

Email: *

Verification: *

Console is running in a Kubernetes cluster, and you need to deploy Defenders on nodes within this cluster.
Which option shows the steps to deploy the Defenders in Kubernetes using the default Console service name?

• A.From the deployment page configure the cloud credential in Console and allow cloud discovery to auto-protect the Kubernetes nodes.
• B.From the deployment page in Console, choose twistlock-console for Console identifier, and run the curl | bash script on the master Kubernetes node.
• C.From the deployment page in Console, choose pod name for Console identifier, generate DaemonSet file, and apply the DaemonSet to twistlock namespace.
• D.From the deployment page in Console, choose twistlock-console for Console identifier, generate DaemonSet file, and apply DaemonSet to the twistlock namespace.

Comment: *

Name: *

Email: *

Verification: *

Which three types of bucket exposure are available in the Data Security module? (Choose three.)

• A.International
• B.Differential
• C.Private
• D.Public
• E.Conditional

Comment: *

Name: *

Email: *

Verification: *

What is the order of steps to create a custom network policy?
(Drag the steps into the correct order of occurrence, from the first step to the last.)

Correct Answer:

Explanation:
A picture containing table Description automatically generated

Comment: *

Name: *

Email: *

Verification: *