PCCSE · Question #104
A customer has serverless functions that are deployed in multiple clouds. Which serverless cloud provider is covered be "overly permissive service access" compliance check?
The correct answer is C. AWS. The 'overly permissive service access' compliance check in Prisma Cloud Compute targets AWS Lambda functions. It evaluates the IAM execution role attached to a Lambda function to detect if it grants excessive permissions (e.g., wildcards like '*' on actions or resources). This is
Question
A customer has serverless functions that are deployed in multiple clouds. Which serverless cloud provider is covered be "overly permissive service access" compliance check?
Options
- AAlibaba
- BGCP
- CAWS
- DAzure
How the community answered
(48 responses)- A2% (1)
- B8% (4)
- C85% (41)
- D4% (2)
Explanation
The 'overly permissive service access' compliance check in Prisma Cloud Compute targets AWS Lambda functions. It evaluates the IAM execution role attached to a Lambda function to detect if it grants excessive permissions (e.g., wildcards like '*' on actions or resources). This is an AWS-specific concept tied to IAM execution roles. While Prisma Cloud supports serverless functions on GCP and Azure as well, this particular compliance check is scoped to AWS Lambda.
Topics
Community Discussion
No community discussion yet for this question.