Prisma Cloud Discussions

Resolved! Agentless Scanning - Relative Costs for Scanning Instances

We are considering agentless scanning with Prisma Cloud Compute.

Temporary scanning instances are spun up to perform the scans, whether the agentless scanning is configured to scan hosts in the same cloud account or from a dedicated hub cloud account

...

Issues with CSV report in PrismaCloud Compute

Hi all,

I'm facing with an annoying issue with CSV reports in PrismaCloud Compute, Compliance Explorer.

I upload the CSV report and open it with excell: when I try to convert with "text to column" I always find out that some raw ahd already splitted

...

Resolved! Propagation of labels from Pods to VMs in micro-segmentation solution

Dear all,

I am looking for a Prisma Cloud Enforcer configuration where micro-segmentation security policies at the level of a K8s namespace by design are not blocked by auto-secure rules for VM namespaces without being too permissive at the VM level,

...

Prevent Prisma Access Key Secrets from being pushed into github

So, we want to prevent developers from pushing Prisma Access Keys' secrets into source-code repository.

A push to a branch would trigger, git-secrets to evaluate a list of regex that detect known secrets.

So, how to identify a Prisma Access Key Secre

...

I was unable to complete the set-up process for the Prisma Cloud product bought from the AWS.

I bought the Prisma Cloud product.

When I register the necessary account for the product in the https://subscribe.redlock.io/register.html, it always failed.

Resolved! CWPP SSL Certificate, self-signed or chain

Given that I am programming a custom https client

When I invoke CWPP APIs over https

Then I encounter SSLErrors

[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain

Where can I get a .pem or .crt fi

...

Resolved! Mandatory Request Headers for Redlock API - x-redlock-auth

Hi- I'm trying to use the API with Python and am having some trouble getting authorized to obtain data using the x-redlock-auth request header.

First, let me add the disclaimer that I'm no Python expert so the help is appreciated even if it seems bas

...

Live Community - New Message - Live Community 2019-05-01 10-37-28.jpg

RQL Custom queries for AWS needed URGENTLY

I am new to RQL and I need to build custom queries quickly for compliance reporting an would appreciate if any SME can help with providing RQL queries for the below, rather than myself spending sleepless nights to re-invent the wheel when an expert s

...

Resolved! Compute/Monitor/Runtime/App-embedded details missing?

I deployed an App-embedded container to an EKS Cluster on Fargate.
I found the defended container in the console, Compute/Monitor/Runtime/App-embedded details.

1) Why can't Users with any role but System Administrator, see the events in that table? Th

...

Resolved! Compliance Report by Account

Hello,

I have created custom compliance report in Prisma Cloud but I would like the the report to show findings by AWS account or AWS account owner. Is this possible?

Resolved! twistcli app-embedded embed command format for EKS containers on Fargate?

Most of my API and twistcli commands work but I cannot get an app-embedded defender to be returned…. I have tried these two commands returns the same error…

declare -x PRISMA_CLOUD_COMPUTE_CONSOLE_API_ADDR="https://us-east1.cloud.twistlock.com/us-1-X

...

Resolved! Curl command to generate App Embedded Defender zip file for Deployment Type, Dockerfile

Given that I want to automate the generation of App Embedded Defender zip file

And there exists a CWPP API documented here, https://prisma.pan.dev/api/cloud/cwpp/defenders#operation/post-defenders-app-embedded

When I attempt to use the example comman

...

Resolved! CWPP API Documentation or Examples on usage of query parameters search and fields

I want to see ALL of the docker labels for a scanned image so I am trying this API, https://prisma.pan.dev/api/cloud/cwpp/registry#operation/get-registry

Invoking that API with query parameter name...

curl -k \
-u "${PRISMA_KEY_ID}:${PGE_PRISMA_SECR...

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Radars/Containers?

Navigating to PCC/Radars/Containers, the console renders a single cluster.

But we have many other clusters where Cloud Discovery reports the Clusters are Defended.

for example...

Why are neither of these two EKS Clusters that I defended with daemon

...

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Manage/Defenders/Manage DaemonSets?

Navigating to PCC/Manage/Defenders/Manage DaemonSets, I see NO EKS daemonsets rendering in the console.

However, Cloud Discovery renders these two EKS clusters Defended=True.

What am I doing wrong? Is it supposed to work this way? Or, What ha

...

Discussions

Resolved! Agentless Scanning - Relative Costs for Scanning Instances

Issues with CSV report in PrismaCloud Compute

Resolved! Propagation of labels from Pods to VMs in micro-segmentation solution

Prevent Prisma Access Key Secrets from being pushed into github

I was unable to complete the set-up process for the Prisma Cloud product bought from the AWS.

Resolved! CWPP SSL Certificate, self-signed or chain

Resolved! Mandatory Request Headers for Redlock API - x-redlock-auth

RQL Custom queries for AWS needed URGENTLY

Resolved! Compute/Monitor/Runtime/App-embedded details missing?

Resolved! Compliance Report by Account

Resolved! twistcli app-embedded embed command format for EKS containers on Fargate?

Resolved! Curl command to generate App Embedded Defender zip file for Deployment Type, Dockerfile

Resolved! CWPP API Documentation or Examples on usage of query parameters search and fields

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Radars/Containers?

Why are EKS Clusters defended with daemonsets NOT rendering in PCC/Manage/Defenders/Manage DaemonSets?

Available operator values for Alerts API Filter?

Cloud Configuration Report for Auditors

Prisma Cloud Compute Multi Tenancy and creating Project

Prisma Cloud Jenkins plugin not to publish scan results to the console

Prisma Cloud DSPM

Prisma Cloud Compute Multi Tenancy and creating Project

Unlock your full community experience!

Resolved! Agentless Scanning - Relative Costs for Scanning Instances

Resolved! Propagation of labels from Pods to VMs in micro-segmentation solution

Resolved! CWPP SSL Certificate, self-signed or chain

Resolved! Mandatory Request Headers for Redlock API - x-redlock-auth

Resolved! Compute/Monitor/Runtime/App-embedded details missing?

Resolved! Compliance Report by Account

Resolved! twistcli app-embedded embed command format for EKS containers on Fargate?

Resolved! Curl command to generate App Embedded Defender zip file for Deployment Type, Dockerfile

Resolved! CWPP API Documentation or Examples on usage of query parameters search and fields