PCCSE · Question #2
Which three steps are involved in onboarding an account for Data Security? (Choose three.)
The correct answer is B. Enable Flow Logs C. Create a S3 bucket D. Create a Cloudtrail with SNS Topic. Onboarding an account for Data Security in Prisma Cloud requires enabling Flow Logs, creating an S3 bucket, and creating a CloudTrail with SNS Topic to capture and forward cloud activity data.
Question
Which three steps are involved in onboarding an account for Data Security? (Choose three.)
Options
- AEnter the RoleARN and SNSARN
- BEnable Flow Logs
- CCreate a S3 bucket
- DCreate a Cloudtrail with SNS Topic
- ECreate a read-only role with in-line policies
How the community answered
(48 responses)- A2% (1)
- B90% (43)
- E8% (4)
Why each option
Onboarding an account for Data Security in Prisma Cloud requires enabling Flow Logs, creating an S3 bucket, and creating a CloudTrail with SNS Topic to capture and forward cloud activity data.
Entering the RoleARN and SNSARN is a step that occurs after the prerequisite infrastructure has already been created, not a standalone onboarding step.
Enabling Flow Logs is required so that network traffic data is captured and made available for data security analysis within Prisma Cloud.
Creating an S3 bucket is necessary to store the CloudTrail logs and other data that Prisma Cloud will ingest for security analysis.
Creating a CloudTrail with an SNS Topic establishes the audit trail and notification mechanism that Prisma Cloud uses to receive and process cloud account activity events.
Creating a read-only role with inline policies is part of standard cloud account onboarding for configuration visibility, not specific to the Data Security onboarding workflow.
Concept tested: Prisma Cloud Data Security account onboarding steps
Source: https://docs.prismacloud.io/en/enterprise-edition/content-collections/connect/connect-cloud-accounts/onboard-aws/configure-data-security-module-1
Topics
Community Discussion
No community discussion yet for this question.