Free Palo Alto Networks PSE-Strata Study Guides Exam Questions & Answer
PSE-Strata Exam Dumps, PSE-Strata Practice Test Questions
NEW QUESTION 38
Which four actions can be configured in an Anti-Spyware profile to address command-and-control traffic from compromised hosts? (Choose four.)
- A. Reset
- B. Quarantine
- C. Alert
- D. Drop
- E. Allow
- F. Redirect
Answer: A,B,C,D
Explanation:
https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/policy/anti-spyware-profiles.html
NEW QUESTION 39
Which two new file types are supported on the WF-500 in PAN-OS 9? (Choose two)
- A. RAR
- B. Zip
- C. ELF
- D. 7-Zip
Answer: A,D
Explanation:
Explanation
https://docs.paloaltonetworks.com/wildfire/9-0/wildfire-admin/wildfire-overview/wildfire-file-type-support
NEW QUESTION 40
Which are the three mandatory components needed to run Cortex XDR? (Choose three.)
- A. Cortex Data Lake
- B. Traps
- C. Panorama
- D. NGFW with PANOS 8 0.5 or later
- E. Directory Syn Service
- F. Pathfinder
Answer: A,D,E
Explanation:
Explanation
https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-prevent-admin/cortex-xdr-prevent-overview/cort
NEW QUESTION 41
A customer is concerned about malicious activity occurring directly on their endpoints and will not be visible to their firewalls.
Which three actions does the Traps agent execute during a security event, beyond ensuring the prevention of this activity? (Choose three.)
- A. Informs WildFire and sends up a signature to the Cloud
- B. Notifies the user about the event
- C. Remediates the event by deleting the malicious file
- D. Communicates the status of the endpoint to the ESM
- E. Collects forensic information about the event
Answer: B,D,E
Explanation:
https://investors.paloaltonetworks.com/node/11156/html
NEW QUESTION 42
Which option is required to Activate/Retrieve a Device Management License on the M-100 Appliance after the Auth Codes have been activated on the Palo Alto Networks Support Site?
- A. Generate a Tech Support File and call PANTAC
- B. Generate a Stats Dump File and upload it to the Palo Alto Networks support portal
- C. Select Device > Licenses and click Activate feature using authorization code
- D. Select Panorama > Licenses and click Activate feature using authorization code
Answer: D
NEW QUESTION 43
Which Palo Alto Networks pre-sales tool involves approximately 4 hour interview to discuss a customer's current security posture?
- A. SLR
- B. Expedition
- C. PPA
- D. BPA
Answer: D
NEW QUESTION 44
The need for a file proxy solution, virus and spyware scanner, a vulnerability scanner, and HTTP decoder for URL filtering is handled by which component in the NGFW?
- A. SIA (Scan It All) Processing Engine
- B. Security Processing Engine
- C. First Packet Processor
- D. Stream-based Signature Engine
Answer: D
NEW QUESTION 45
Which task would be identified in Best Practice Assessment tool?
- A. identify the threats associated with each application
- B. identify sanctioned and unsanctioned SaaS applications
- C. identify and provide recommendations for device management access
- D. identify the visibility and presence of command-and-control sessions
Answer: B
NEW QUESTION 46
What are three considerations when deploying User-ID? (Choose three.)
- A. Use a dedicated service account for User-ID services with the minimal permissions necessary
- B. Specify included and excluded networks when configuring User-ID
- C. Only enable User-ID on trusted zones
- D. User-ID can support a maximum of 15 hops
- E. Enable WMI probing in high security networks
Answer: A,B,C
NEW QUESTION 47
Which two tabs in Panorama can be used to identify templates to define a common base configuration? (Choose two.)
- A. Objects Tab
- B. Device Tab
- C. Policies Tab
- D. Network Tab
Answer: B,D
Explanation:
https://www.paloaltonetworks.com/documentation/80/pan-os/web-interface-help/panorama-web-interface/panorama-templates/template-stacks
NEW QUESTION 48
What are two core values of the Palo Alto Network Security Operating Platform? (Choose two.}
- A. safe enablement of all applications
- B. defense against threats with static security solution
- C. prevention of cyber attacks
- D. threat remediation
Answer: C,D
NEW QUESTION 49
Which three components are specific to the Query Builder found in the Custom Report creation dialog of the firewall? (Choose three.)
- A. Operator
- B. Recipient
- C. Database
- D. Schedule
- E. Attribute
- F. Connector
Answer: A,E,F
NEW QUESTION 50
What are two benefits of using Panorama for a customer who is deploying virtual firewalls to secure data center traffic? (Choose two.)
- A. It can provide the Automated Correlation Engine functionality, which the virtual firewalls do not support.
- B. It can monitor the virtual firewalls' physical hosts and Vmotion them as necessary
- C. It can automatically create address groups for use with KVM.
- D. It can bootstrap the virtual firewalls for dynamic deployment scenarios.
Answer: A,D
NEW QUESTION 51
Which three new script types can be analyzed in WildFire? (Choose three.)
- A. MonoScript
- B. PythonScript
- C. VBScript
- D. JScript
- E. PowerShell Script
Answer: C,D,E
Explanation:
Explanation
The WildFire cloud is capable of analyzing the following script types:
* JScript (.js)
* VBScript (.vbs)
* PowerShell Script (.ps1)
https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/script-sample-s
NEW QUESTION 52
As you prepare to scan your Amazon S3 account, what enables Prisma service permission to access Amazon S3?
- A. AWS account ID
- B. access key ID
- C. administrative Password
- D. secret access key
Answer: B
NEW QUESTION 53
Which domain permissions are required by the User-ID Agent for WMI Authentication on a Windows Server? (Choose three.)
- A. Event Log Readers
- B. Distributed COM Users
- C. Server Operator
- D. Enterprise Administrators
- E. Domain Administrators
Answer: A,C,E
Explanation:
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/user-identification/device-user-identification-user-mapping/user-id-agent-setup/user-id-agent-setup-wmi-authentication
NEW QUESTION 54
Which three new script types can be analyzed in WildFire? (Choose three.)
- A. MonoScript
- B. PythonScript
- C. VBScript
- D. JScript
- E. PowerShell Script
Answer: C,D,E
Explanation:
The WildFire cloud is capable of analyzing the following script types:
* JScript (.js)
* VBScript (.vbs)
* PowerShell Script (.ps1)
https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/latest-wildfire-cloud-features/script-sample-support
NEW QUESTION 55
How frequently do WildFire signatures move into the antivirus database?
- A. every 1 hour
- B. every 24 hours
- C. once a week
- D. every 12 hours
Answer: B
Explanation:
Explanation
https://docs.paloaltonetworks.com/wildfire/9-0/wildfire-admin/wildfire-overview/wildfire-concepts/wildfire-sign
NEW QUESTION 56
A customer requests that a known spyware threat signature be triggered based on a rate of occurrence, for example, 10 hits in 5 seconds.
How is this goal accomplished?
- A. Submit a request to Palo Alto Networks to change the behavior at the next update
- B. Add a correlation object that tracks the occurrences and triggers above the desired threshold
- C. Create a custom spyware signature matching the known signature with the time attribute
- D. Configure the Anti-Spyware profile with the number of rule counts to match the occurrence frequency
Answer: C
NEW QUESTION 57
XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy. Which two features must be enabled to meet the customer's requirements? (Choose two.)
- A. Virtual systems
- B. HA active/active
- C. HA active/passive
- D. Policy-based forwarding
Answer: B,D
Explanation:
Explanation
https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/high-availability/route-based-redundancy
NEW QUESTION 58
......
Latest PSE-Strata Actual Free Exam Questions Updated 90 Questions: https://examsboost.pass4training.com/PSE-Strata-test-questions.html
