MFA on Prisma Cloud Compute Edition

We need to enforce MFA to log in to the twistlock console.

Is it possible to do that on the Cloud Compute Edition (self-hosted)?

Kubernetes CIS Scans for EKS and OKE

We have Kubernetes deployments in AWS (EKS) and OCI (OKE). The Prisma Cloud compliance scans being run against these clusters are using the generic CIS Kubernetes 1.2 benchmark rather than using the CIS benchmarks that have been customized for EKS an

Vuln scans for Containers

Understanding Licensing requirements for Runtime Defence for Containers

Hi,

I would like to understand the licensing requirements and impacts if I enable Runtime Defence for Containers. Will it follow the same licensing model as Host Defender, Container Defencer and Container Defender - App Enabled?

If I have "Active" Co

Prisma Cloud Integration with Amazon SQS

Hey Community,

Been trying to integrate Prisma Cloud with SQS, followed the docs successfully to do so and create alert rules with selected policies chosen (https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/configure-external

URL DB Version in Prisma

Hi Team,

Please let me know how to check the URL DB version for Prisma. 

As checked in Dynamic updates i can see only Antivirus, Application and Threats, Device Dictionary and WF.

Also we will not have access to any of RN or MU-SPNs to check. May i k

Prisma Cloud Remediation - Invalid CLI script

In Prisma Cloud SaaS, while creating custom remediation with cli commands, using custom variables or other cli command (such as grep) is not allowed apparently. Considering the following command, what could be the work-around to pass the output of th

images scanning: propagate CI image scan rules to registry scan

Hi,

Is it possible in Prisma Cloud to have the same rules configured for the CI scan of an image propagated to the registry scan of that same image?

It seems that there are no possibility to configure exceptions for alerts in a registry scanning cont

RQL to get last login on GCP

Hi all,

Is there any RQL that I can fetch the last login of an IAM user in GCP?

Tks

For outbound rules for instances that need access to external APIs

We use the cloud service AWS.

The following issue has been detected in Prisma Cloud.

> This policy detects security groups where network 0.0.0.0/0 and ::0/0 are used. This policy detects security groups where network 0.0.0.0/0 and ::0/0 are used.

How can I configure Prisma Compute to Auto-Manage registry scan settings for AWS Accounts lifecycle events?

I work with a large AWS Landing Zone over 100 accounts.

So, a week doesn't go by without Account CRUD: Create, Read, Update, Delete.

Rather than manually managingCompute/Defend/Vulnerabilities/Images/Registry settings,

I prefer to automate the CRUD o

GCP Agentless Scanning Setup

Hi,

Has anyone tried onboarding GCP account for agentless scanning? During the setup it is asking for GCP Service account and API token details but we can only generate json keys for service accounts. Any idea how to get this setup done?

Thanks.

Prisma cloud compute compliance policy for windows host

Hi Everyone,

I need more example addition from admin guide to create the custom rule for checking compliance host policy for Microsoft windows server.

Because I testing the script on the guide and found all conditions was checking pass.

Prisma Cloud API returning 401 Unauthorized

I am trying to retrieve some scans and am receiving a 401 error.  The access key has the System Admin role.  Suggestions?  Thank you.  

API="https://us-east1.cloud.twistlock.com/us-2-XXXXXXXXX"

# Get Token
JWT="$(curl -s ${API}/api/v22.06/authentica