PCCSE · Question #133
During an initial deployment of Prisma Cloud Compute, the customer sees vulnerabilities in their environment. Which statement correctly describes the default vulnerability policy?
The correct answer is D. It alerts on all vulnerabilities, regardless of severity.. Out of the box, Prisma Cloud Compute's default vulnerability policy is set to 'alert' for all detected vulnerabilities regardless of severity (D). This default ensures immediate visibility into the environment without disrupting workloads. It does not block containers (A), does n
Question
During an initial deployment of Prisma Cloud Compute, the customer sees vulnerabilities in their environment. Which statement correctly describes the default vulnerability policy?
Options
- AIt blocks all containers that contain a vulnerability.
- BIt alerts on any container with more than three critical vulnerabilities.
- CIt blocks containers after 30 days if they contain a critical vulnerability.
- DIt alerts on all vulnerabilities, regardless of severity.
How the community answered
(19 responses)- B5% (1)
- C11% (2)
- D84% (16)
Explanation
Out of the box, Prisma Cloud Compute's default vulnerability policy is set to 'alert' for all detected vulnerabilities regardless of severity (D). This default ensures immediate visibility into the environment without disrupting workloads. It does not block containers (A), does not apply a threshold like three critical vulnerabilities (B), and does not delay enforcement for 30 days (C). Administrators must explicitly configure stricter enforcement actions (block, prevent) based on their organization's risk tolerance.
Topics
Community Discussion
No community discussion yet for this question.