PCCSE Question #33: Real Exam Question with Answer & Explanation

Sign in or unlock PCCSE to reveal the answer and full explanation for question #33. The question stem and answer options stay visible for context.

Prisma Cloud Platform

Question

A S3 bucket within AWS has generated an alert by violating the Prisma Cloud Default policy "AWS S3 buckets are accessible to public" The policy definition follows: config where cloud type = 'aws' AND api name='aws-s3api-get-bucket-acr AND json.rule="((((acl grants{?(@ grantee='AllUsers')] size > 0) or policyStatusisPubiic is true) and publicAccessBlockConfiguration does not exist) or ((ad.grantsp(@ grantee=='AII Users')] size > 0) and publicAccessBlockConfiguration ignorePubhcAds is false) or (policyStatus isPublic is true and publicAccessBlockConfiguration.restrictPublicBuckets is false)) and websiteConfiguration does not exist" Why did this alert get generated?

Options

Aanomalous behaviors
Bnetwork traffic to the S3 bucket
Cconfiguration of the S3 bucket
Dan event within the cloud account

Unlock PCCSE to see the answer

You've previewed enough free PCCSE questions. Unlock PCCSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock PCCSE - $49.99 / 30 days Sign in

Topics

#Prisma Cloud Policies#AWS S3 Security#Cloud Misconfiguration

Full PCCSE Practice Browse All PCCSE Questions