Prisma Cloud Compute Compliance enforcement for hosts covers which three options?

A customer wants to harden its environment from misconfiguration.

Prisma Cloud Compute Compliance enforcement for hosts covers which three options? (Choose three.)
A . Docker daemon configuration files
B . Docker daemon configuration
C . Host cloud provider tags
D . Host configuration
E . Hosts without Defender agents

View Answer

Answer: ABD

Explanation:

Prisma Cloud Compute Compliance enforcement for hosts covers several aspects to ensure a secure and compliant host environment, particularly within containerized environments. These include: Docker daemon configuration files: Ensuring that Docker daemon configuration files are set up according to best security practices is crucial. These files contain various settings that control the behavior of the Docker daemon, and misconfigurations can lead to security vulnerabilities.

Docker daemon configuration: Beyond just the configuration files, the overall configuration of the Docker daemon itself is critical. This encompasses runtime settings and command-line options that determine how Docker containers are executed and managed on the host.

Host configuration: The security of the underlying host on which Docker and other container runtimes are installed is paramount. This includes the configuration of the host’s operating system, network settings, file permissions, and other system-level settings that can impact the security of the containerized applications running on top.

By focusing on these areas, Prisma Cloud ensures that not just the containers but also the environment they run in is secure, adhering to compliance standards and best practices to mitigate risks associated with containerized deployments.