nerdexam
Palo_Alto_Networks

PCCSE · Question #88

A customer wants to harden its environment from misconfiguration. Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)

The correct answer is B. Host configuration C. Docker daemon configuration files D. Docker daemon configuration. Prisma Cloud Compute Compliance for hosts covers: (B) Host configuration - OS-level settings such as file permissions, user accounts, and services; (C) Docker daemon configuration files - checks the actual configuration files used by the Docker daemon (e.g., daemon.json); and (D)

Cloud Compliance and Governance

Question

A customer wants to harden its environment from misconfiguration. Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)

Options

  • AHost cloud provider tags
  • BHost configuration
  • CDocker daemon configuration files
  • DDocker daemon configuration
  • EHosts without Defender agents

How the community answered

(45 responses)
  • A
    7% (3)
  • B
    89% (40)
  • E
    4% (2)

Explanation

Prisma Cloud Compute Compliance for hosts covers: (B) Host configuration - OS-level settings such as file permissions, user accounts, and services; (C) Docker daemon configuration files - checks the actual configuration files used by the Docker daemon (e.g., daemon.json); and (D) Docker daemon configuration - checks the running Docker daemon settings and parameters. Option A (host cloud provider tags) is not a compliance enforcement category for hosts in Prisma Cloud Compute - tagging is a governance/organizational concern handled at the CSPM layer. Option E (hosts without Defender agents) is an inventory/coverage gap concern, not a compliance enforcement category.

Topics

#Prisma Cloud Compute#Compliance enforcement#Host security#Docker security

Community Discussion

No community discussion yet for this question.

Full PCCSE Practice