Select the Prisma Cloud capability that decouples workload identity from IP addresses, leverages tags and metadata to assign a logical identity to applications and workloads, and then uses it to enforce ID-based micro-segmentation and security policies that adapt to your dynamic environments.1 pointIdentity and access management - IAM - securityUEBAAccess managementMachine identity

The Prisma Cloud capability you are referring to is Machine Identity. Here’s a step-by-step explanation:

1. Decouples Workload Identity from IP Addresses: This capability does not rely on static IP addresses to identify workloads. Instead, it uses other identifiers that are more dynamic and reliable in cloud environments.

2. Leverages Tags and Metadata: It uses tags and metadata associated with workloads to assign a logical identity. Tags and metadata are often used in cloud environments to provide additional context and information about resources.

3. Assigns a Logical Identity to Applications and Workloads: By using tags and metadata, it creates a logical identity for each application and workload. This logical identity is more flexible and can adapt to changes in the environment.

4. Enforces ID-based Micro-segmentation and Security Policies: With the logical identity in place, the system can enforce security policies based on these identities. This is known as ID-based micro-segmentation, which allows for more granular and dynamic security controls.

5. Adapts to Dynamic Environments: Since it uses logical identities that are based on tags and metadata, it can easily adapt to changes in the environment, such as scaling up or down, moving workloads, or changing configurations.

Therefore, the correct answer is Machine Identity.

The Prisma Cloud capability you are referring to is "Machine identity." Here’s a step-by-step explanation:

1. Decoupling Workload Identity from IP Addresses: This capability allows the identification of workloads without relying on their IP addresses, which can change frequently in dynamic environments.

2. Leveraging Tags and Metadata: It uses tags and metadata to assign a logical identity to applications and workloads. Tags and metadata provide more stable and meaningful identifiers compared to IP addresses.

3. Assigning Logical Identity: By using tags and metadata, the system can create a logical identity for each application and workload. This logical identity is more consistent and reliable for security purposes.

4. Enforcing ID-based Micro-segmentation: With logical identities in place, the system can enforce micro-segmentation based on these identities. Micro-segmentation is a security technique that divides the network into smaller, isolated segments to reduce the attack surface.

5. Adapting to Dynamic Environments: The use of logical identities allows the security policies to adapt to changes in the environment, such as the addition or removal of workloads, without needing to reconfigure IP-based rules.

Therefore, the correct answer is "Machine identity."