Examice

Exam PCCSE All QuestionsBrowse all questions from this exam

Go to Exam

Question 122

An administrator has a requirement to ingest all Console and Defender logs to Splunk.

Which option will satisfy this requirement in Prisma Cloud Compute?

Enable the API settings for logging.

Enable the CSV export in the Console.

Enable the syslog option in the Console

Enable the Splunk option in the Console.

Correct Answer: D

To ingest all Console and Defender logs to Splunk in Prisma Cloud Compute, the correct option is to enable the Splunk option in the Console. This setting will enable direct integration and forwarding of logs to Splunk.

Discussion

poiuytrOption: C

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/audit/logging

SpippoloOption: C

C --> Log into Console. / Go to Manage > Alerts > Logging. / Configure Prisma Cloud to send audit event records to syslog, stdout and Prometheus.