This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Cortex Cloud Discussions
Share ideas and post questions related to Cortex Cloud — the industry's most comprehensive cloud native security platform — and the compute capabilities available within it in this forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Cortex Cloud Discussions
Share ideas and post questions related to Cortex Cloud — the industry's most comprehensive cloud native security platform — and the compute capabilities available within it in this forum.
About Cortex Cloud Discussions
Share ideas and post questions related to Cortex Cloud — the industry's most comprehensive cloud native security platform — and the compute capabilities available within it in this forum.

Discussions

Start a conversation

Welcome to the Prisma Cloud Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 5043 Views
  • 1 replies
  • 1 Likes

Anyone use GuardDuty as well as Twistlock?

I understand that Twistlock does run-time monitoring and protection. In Fargate configuration, it will block any malicious process spawned from the container but will not block the container itself. I’m curious if anyone enable AWS GuardDuty together with Twistlock since it does ECS runtime monitoring as well? Is there any impact to running bo...

Prisma Cloud Application Vulnerability Search : Deployed tab vs CI tab

Not sure if this has been asked before but I am fairly new to checking Prisma vulnerabilities -- I want to resolve High/Critical ones on our APIs but I get confused when checking CI tab and Deployed tab from Compute>Monitor>Vulnerabilities section. CI tab would have that API to contain lots of vulnerabilities (6 Critical, 3 high, 4 medium,...

CIEM JIT Features

Hi All, Can I check where can I find out more details on the CIEM JIT functionality? https://www.paloaltonetworks.com/prisma/cloud/cloud-infrastructure-entitlement-mgmt "Just-in-Time (JIT) Access Provides a Zero Trust approach to permission management by limiting access to resources based on specific time-limited permissions. Users and machine i...

Feature Request: Recommendation for Remediation (OPTIONAL) Box on Custom Policies in Prisma Application Security

When creating a Build Policy on the Prisma console, the Remediation (OPTIONAL) Box is grayed out. I'm told that this is expected, but initially when doing my POC for Prisma back in April, I don't believe this was always the case. If it is, the word "optional" should be removed. For a Feature Request, we are asking to enable the Recommendation fo...

Prisma Cloud alerts

Hello everyone! I connected my AWS account to Prisma Cloud service and it automatically scanned it. Now I think that I could have new vulnerabilities on my account but new s3 buckets or EC2 instances don't appers automatically on my Prisma Cloud account. How I can rescan my account and receive new alerts?

Removing Prisma Cloud resources from onboarded AWS account

We onboarded an AWS account into a Prisma Cloud demo. The demo is over. How do we make sure that we remove all the resources created during the demo? There's obviously the PrismaCloudRole that was created by the PrismaCloudIAMRoles CloudFormation stack. Do we have to search through CloudTrail for every entry of the redlock user creating some...

The environment variable FARGATE_TASK in the prisma cloud defender sidecar container definition

I have an ECS Scheduled task with two containers. I used the console to generate a new task definition with the defender sidecar. In its container definition, the environment variable `FARGATE_TASK`'s value is the same as the name of my first application's container definition. What is this environment variable for? Why does it pick my first con...

rchen25 by L0 Member
  • 1408 Views
  • 0 replies
  • 0 Likes

Resolved! How to get available version tags for Prisma Cloud container images?

Hello, I am trying to download Prisma Cloud console and defender docker images using the commands below: $ docker (or podman) pull registry.twistlock.com/twistlock/console:console_<VERSION> $ docker (or podman) pull registry.twistlock.com/twistlock/defender:defender_<VERSION> How can I get all the available tags to get the lat...

RQL - Checking tags using _DateTime function

Can _DateTime function be used to check the date of a tag on a resource in AWS? My current query syntax is accepted by prisma however the _DateTime functions are not actually checking the tag (type string because all tags are strings in AWS) so it is returning undesired output. Current query (should return all volumes with a (tag.key=Retain).v...

Checkov doesn't natively support TerraGrunt

We had issues with secret scanning output in checkov (see https://live.paloaltonetworks.com/t5/prisma-cloud-discussions/checkov-secrets-framework-scanning-exposes-secrets-in-junit-test/td-p/564324 ) However, if checkov natively supported TerraGrunt, then we wouldn't need to output the terraform plan to a file for checkov to be able to scan it,...

Checkov Secrets Framework Scanning exposes secrets in junit test output

We have recently starting using checkov scans in our CI/CD pipelines and have a less than stellar experience. First the positives: It is very good at finding secrets! Now the negative... When a secret is found, the secret is included in the junit output (stacktrace) in plaintext, unmasked This therefore means secrets perfectly visible in o...

Resolved! How to pass a filter to the Alerts API call with a post

I am attempting to get back a list of alerts with a status of resolved, but the filter is not working for me. Any ideas? I get back items, but they don't always have a status of resolved. Sometimes they do, sometimes the status is open, etc. See code below. url2="https://api2.prismacloud.io/alert?detailed=true" api_key="my token goes...

  • 478 Posts
  • 68 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks