Exam PCCSE topic 1 question 159 discussion

BD "The list of AWS policy types and identities that are used to calculate the net effective permissions are as follows: AWS IAM role AWS IAM policy AWS IAM group AWS service control policies (SCPs) Role trust relationships Permission boundaries NotAction Policies with wild card support If your cloud environment has additional resource types, Prisma Cloud does not factor them into the net-effective permissions. In addition, permissions can also be set by a resource-based policy. The following AWS resource-based policies are supported in the net effective permissions calculation: Lambda function S3 bucket SQS queue SNS topic ECS task definition Secret manager KMS key Lambda layer version"

BD https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-iam-security/context-used-to-calculate-effective-permissions

CD https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-iam-security/context-used-to-calculate-effective-permissions