Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Palo Alto Networks PSE Strata

Palo Alto Networks PSE Strata Exam Practice Questions (P. 5)

  • Full Access (136 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Which three features are used to prevent abuse of stolen credentials? (Choose three.)
  1. A
    multi-factor authentication
  2. B
    URL Filtering Profiles
  3. C
    WildFire Profiles
  4. D
    Prisma Access
  5. E
    SSL decryption rules

Correct Answer:
ACE
Reference:
https://www.paloaltonetworks.com/company/press/2017/palo-alto-networks-delivers-industry-first-capabilities-to-prevent-credential-theft-and-abuse

Question #22
A customer has business-critical applications that rely on the general web-browsing application. Which security profile can help prevent drive-by-downloads while still allowing web-browsing traffic?
  1. A
    File Blocking Profile
  2. B
    DoS Protection Profile
  3. C
    URL Filtering Profile
  4. D
    Vulnerability Protection Profile

Correct Answer:
A
Reference:
https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=&ved=2ahUKEwjaw53CvdHyAhUPy4UKHXT5D-MQFnoECAMQAQ&url=https%
3A%2F%2Fknowledgebase.paloaltonetworks.com%2Fservlet%2FfileField%3FentityId%3Dka10g000000U0roAAC%26field%
3DAttachment_1__Body__s&usg=AOvVaw3DCBM7-FwWInkWYANLrzUt
(32)

Question #23
Which three settings must be configured to enable Credential Phishing Prevention? (Choose three.)
  1. A
    validate credential submission detection
  2. B
    enable User-ID
  3. C
    define an SSL decryption rulebase
  4. D
    define URL Filtering Profile
  5. E
    Enable App-ID

Correct Answer:
ABD
Reference:
https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/threat-prevention/prevent-credential-phishing.html

Question #24
A customer with a legacy firewall architecture is focused on port and protocol level security, and has heard that next generation firewalls open all ports by default.
What is the appropriate rebuttal that positions the value of a NGFW over a legacy firewall?
  1. A
    Palo Alto Networks does not consider port information, instead relying on App-ID signatures that do not reference ports
  2. B
    Default policies block all interzone traffic. Palo Alto Networks empowers you to control applications by default ports or a configurable list of approved ports on a per-policy basis
  3. C
    Palo Alto Networks keep ports closed by default, only opening ports after understanding the application request, and then opening only the application- specified ports
  4. D
    Palo Alto Networks NGFW protects all applications on all ports while leaving all ports opened by default

Correct Answer:
C
Reference:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClVwCAK

Question #25
Which four actions can be configured in an Anti-Spyware profile to address command-and-control traffic from compromised hosts? (Choose four.)
  1. A
    Reset
  2. B
    Quarantine
  3. C
    Drop
  4. D
    Allow
  5. E
    Redirect
  6. F
    Alert

Correct Answer:
ACDF
Reference:
https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/policy/security-profiles

Previous Questions Next Questions

All Pages