ExamGecko
Login
Home / Palo Alto Networks / PSE-PrismaCloud / List of questions
Ask Question

Palo Alto Networks PSE-PrismaCloud Practice Test - Questions Answers, Page 2

Add to Whishlist

List of questions

Question 11

Report Export Collapse

Which three anomaly policies are predefined in Prisma Public Cloud? (Choose three.)

Excessive login failures

Excessive login failures

Unusual user activity

Unusual user activity

Denial-of-service activity

Denial-of-service activity

Account hijacking attempts

Account hijacking attempts

Suspicious file activity

Suspicious file activity

Suggested answer: A, B, D
Explanation:

Account hijacking attempts

---Detect potential account hijacking attempts discovered by identifying unusual login activities. These can happen if there are concurrent login attempts made in short duration from two different geographic locations, which is

impossible time travel

, or login from a previously unknown browser, operating system, or location.

Excessive login failures

---Detect potential account hijacking attempts discovered by identifying brute force login attempts. Excessive login failure attempts are evaluated dynamically based on the models observed with continuous learning.

Unusual user activity

---Discover insider threat and an account compromise using advanced data science. The Prisma Cloud machine learning algorithm profiles a user's activities on the console, as well as the usage of access keys based on the location and the type of cloud resources.

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/anomaly-policies.html

asked 14/02/2025
San Min Oo
48 questions

Question 12

Report Export Collapse

Which two data sources are ingested by Prisma Cloud? (Choose two.)

network flow logs

network flow logs

list of all database instances' tables

list of all database instances' tables

metadata about compute resources' configuration

metadata about compute resources' configuration

Cortex Data Lake

Cortex Data Lake

Suggested answer: A, C
asked 14/02/2025
Marcelo Oliveira
44 questions

Question 13

Report Export Collapse

Which pillar of the Prisma Cloud platform can secure outbound traffic, stop lateral attack movement, and block inbound threats?

Cloud Workload Protection (CWP)

Cloud Workload Protection (CWP)

Cloud Code Security

Cloud Code Security

Cloud Network Security

Cloud Network Security

Cloud Identity Security

Cloud Identity Security

Suggested answer: C
asked 14/02/2025
Vageesh Shanmukha
52 questions

Question 14

Report Export Collapse

Which statement applies to vulnerability management policies?

Host and serverless rules support blocking, whereas container rules do not.

Host and serverless rules support blocking, whereas container rules do not.

Rules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.

Rules explain the necessary actions when vulnerabilities are found in the resources of a customer environment.

Policies for containers, hosts, and serverless functions are not separate.

Policies for containers, hosts, and serverless functions are not separate.

Rules are evaluated in an undefined order.

Rules are evaluated in an undefined order.

Suggested answer: B
asked 14/02/2025
TIAM HERVE
53 questions

Question 15

Report Export Collapse

An administrator deploys a VM-Series firewall into Amazon Web Services. Which attribute must be disabled on the data-plane elastic network interface for the instance to handle traffic that is not destined to its own IP address?

security group

security group

tags

tags

elastic ip address

elastic ip address

source/destination checking

source/destination checking

Suggested answer: D
Explanation:

https://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/deploy-the-vm-series-firewall-on-aws/launch-the-vm-series-firewall-on-aws.html

asked 14/02/2025
Haythem KEfi
38 questions

Question 16

Report Export Collapse

Which Google Cloud Platform project shares its VPC networks with other projects?

Service project

Service project

Host project

Host project

Admin project

Admin project

Subscribing project

Subscribing project

Suggested answer: B
Explanation:

Create a shared VPC using the Trust VPC created when you deployed the firewall template.

Set up a shared VPC for the host (firewall) project:

gcloud compute shared-vpc enable HOST_PROJECT_ID

https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series-firewall-on-google-cloud-platform/autoscaling-on-google-cloud-platform/deploy-autoscaling-on-google-cloud.html

asked 14/02/2025
Chet Camlin
39 questions

Question 17

Report Export Collapse

An administrator has deployed an AWS transit gateway and used multiple VPC spokes to segregate a multi-tier application. The administrator also created a security VPC with multiple VM-Series NGFWs in an active/active deployment model via ECMP using Amazon Web Services VPN-based attachments.

What must be configured on the firewall to avoid asymmetric routing?

source address translation

source address translation

destination address translation

destination address translation

port address translation

port address translation

source and destination address translation

source and destination address translation

Suggested answer: A
asked 14/02/2025
sidra gray
40 questions

Question 18

Report Export Collapse

Which two items are required when a VM-100 BYOL instance is upgraded to a VM-300 BYOL instance? (Choose two.)

UUID

UUID

new Auth Code

new Auth Code

CPU ID

CPU ID

API Key

API Key

Suggested answer: B, D
Explanation:

In a public cloud deployment, if your firewall is licensed with the BYOL option, you mustDeactivate VMbefore you change the instance type or VM type and apply the license again on the firewall after you complete the model or instance upgrade. When you change the instance type, because the firewall has a new UUID and CPU ID, the existing license will no longer be valid.

https://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/about-the-vm-series-firewall/upgrade-the-vm-series-firewall/upgrade-the-vm-series-model

asked 14/02/2025
Khaled Mohamed Abdraboh Metwalli
38 questions

Question 19

Report Export Collapse

can you create a custom compliance standard in Prisma Public Cloud?

Generate a new Compliance Report.

Generate a new Compliance Report.

Create compliance framework in a spreadsheet then import into Prisma Public Cloud.

Create compliance framework in a spreadsheet then import into Prisma Public Cloud.

From Compliance tab, clone a default framework and customize.

From Compliance tab, clone a default framework and customize.

From Compliance tab > Compliance Standards, click 'Add New.'

From Compliance tab > Compliance Standards, click 'Add New.'

Suggested answer: D
Explanation:

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-compliance/create-a-custom-compliance-standard

asked 14/02/2025
Arindam Sinha
32 questions

Question 20

Report Export Collapse

Which three types of security checks can Prisma Public Cloud perform? (Choose three.)

compliance where

compliance where

network where

network where

user where

user where

config where

config where

event where

event where

Suggested answer: B, D, E
asked 14/02/2025
Azahar Basri
29 questions
Total 115 questions
Go to page: of 12
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which Resource Query Language (RQL) query monitors all 'delete' activities for the user 'user1'?
Which Resource Query Language (RQL) query returns a list of all TERMINATED Google Compute Engine (GCE) instances?
What are two business values of Cloud Code Security? (Choose two.)
Which type of Resource Query Language (RQL) query is used to create a custom policy that looks for untagged resources?
In which two ways can Prisma Cloud Compute (PCC) edition be installed? (Choose two.)
What does Prisma Cloud execute to change public cloud infrastructure when autoremediation is enabled?
Which two elements does Prisma Cloud monitor when analyzing for unusual user activity? (Choose two.)
Which regulatory framework in Prisma Cloud measures compliance with European Union (EU) data privacy regulations in Amazon Web services (AWS) workloads?
All Amazon Regional Database Service (RDS)-deployed resources and the regions in which they are deployed can be identified by prisma Cloud using which two methods? (Choose two.)
A Prisma Cloud Administrator has been asked to create a custom policy which notifies the InfoSec team each time a configuration mange is made to a Security group. Which type of Resource Query Language (RQL) query would be used in this policy?