ExamGecko
Login
Home / Palo Alto Networks / PCNSA / List of questions
Ask Question

Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 3

Add to Whishlist

List of questions

Question 21

Report Export Collapse

Your company requires positive username attribution of every IP address used by wireless devices to support a new compliance requirement. You must collect IP Γ±to-user mappings as soon as possible with minimal downtime and minimal configuration changes to the wireless devices themselves. The wireless devices are from various manufactures.

Given the scenario, choose the option for sending IP-to-user mappings to the NGFW.

syslog
syslog
RADIUS
RADIUS
UID redistribution
UID redistribution
XFF headers
XFF headers
Suggested answer: A
asked 23/09/2024
xun wang
48 questions

Question 22

Report Export Collapse

An administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact a command-and-control (C2) server. Which two security profile components will detect and prevent this threat after the firewall's signature database has been updated? (Choose two.)

vulnerability protection profile applied to outbound security policies
vulnerability protection profile applied to outbound security policies
anti-spyware profile applied to outbound security policies
anti-spyware profile applied to outbound security policies
antivirus profile applied to outbound security policies
antivirus profile applied to outbound security policies
URL filtering profile applied to outbound security policies
URL filtering profile applied to outbound security policies
Suggested answer: B, D
Explanation:

References:

asked 23/09/2024
Chris Abunin
29 questions

Question 23

Report Export Collapse

In which stage of the Cyber-Attack Lifecycle would the attacker inject a PDF file within an email?

Weaponization
Weaponization
Reconnaissance
Reconnaissance
Installation
Installation
Command and Control
Command and Control
Exploitation
Exploitation
Suggested answer: A
asked 23/09/2024
Kristian Michael Matias
53 questions

Question 24

Report Export Collapse

Identify the correct order to configure the PAN-OS integrated USER-ID agent.

add the service account to monitor the server(s)
add the service account to monitor the server(s)
define the address of the servers to be monitored on the firewall
define the address of the servers to be monitored on the firewall
commit the configuration, and verify agent connection status
commit the configuration, and verify agent connection status
create a service account on the Domain Controller with sufficient permissions to execute the User- ID agent
create a service account on the Domain Controller with sufficient permissions to execute the User- ID agent
2-3-4-1
2-3-4-1
1-4-3-2
1-4-3-2
3-1-2-4
3-1-2-4
1-3-2-4
1-3-2-4
Suggested answer: D
asked 23/09/2024
Rutger Pels
36 questions

Question 25

Report Export Collapse

Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.

Complete the security policy to ensure only Telnet is allowed.

Security Policy: Source Zone: Internal to DMZ Zone __________services "Application defaults", and action = Allow

Destination IP: 192.168.1.123/24
Destination IP: 192.168.1.123/24
Application = 'Telnet'
Application = 'Telnet'
Log Forwarding
Log Forwarding
USER-ID = 'Allow users in Trusted'
USER-ID = 'Allow users in Trusted'
Suggested answer: B
asked 23/09/2024
Jason Potter
52 questions

Question 26

Report Export Collapse

Based on the security policy rules shown, ssh will be allowed on which port?

Palo Alto Networks PCNSA image Question 26 53841 09232024001155000000

80
80
53
53
22
22
23
23
Suggested answer: C
asked 23/09/2024
Arun Pandian
47 questions

Question 27

Report Export Collapse

Which license must an Administrator acquire prior to downloading Antivirus Updates for use with the firewall?

Threat Prevention License
Threat Prevention License
Threat Implementation License
Threat Implementation License
Threat Environment License
Threat Environment License
Threat Protection License
Threat Protection License
Suggested answer: A
asked 23/09/2024
Pises Cuptintorn
44 questions

Question 28

Report Export Collapse

An administrator notices that protection is needed for traffic within the network due to malicious lateral movement activity. Based on the image shown, which traffic would the administrator need to monitor and block to mitigate the malicious activity?

Palo Alto Networks PCNSA image Question 28 53843 09232024001155000000

branch office traffic
branch office traffic
north-south traffic
north-south traffic
perimeter traffic
perimeter traffic
east-west traffic
east-west traffic
Suggested answer: D
asked 23/09/2024
Susan Brady
52 questions

Question 29

Report Export Collapse

Given the topology, which zone type should zone A and zone B to be configured with?

Palo Alto Networks PCNSA image Question 29 53844 09232024001155000000

Layer3
Layer3
Tap
Tap
Layer2
Layer2
Virtual Wire
Virtual Wire
Suggested answer: A
asked 23/09/2024
Ahmed Dawoud
48 questions

Question 30

Report Export Collapse

To use Active Directory to authenticate administrators, which server profile is required in the authentication profile?

domain controller
domain controller
TACACS+
TACACS+
LDAP
LDAP
RADIUS
RADIUS
Suggested answer: C
asked 23/09/2024
ABHIJIT GHOSH
32 questions
Total 362 questions
Go to page: of 37
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is updating Security policy to align with best practices. Which Policy Optimizer feature is shown in the screenshot below?
A security administrator has configured App-ID updates to be automatically downloaded and installed. The company is currently using an application identified by App-ID as SuperApp_base. On a content update notice, Palo Alto Networks is adding new app signatures labeled SuperApp_chat and SuperApp_download, which will be deployed in 30 days. Based on the information, how is the SuperApp traffic affected after the 30 days have passed?
Which type of DNS signatures are used by the firewall to identify malicious and command-and-control domains?
Which action would an administrator take to ensure that a service object will be available only to the selected device group?
Which firewall plane provides configuration, logging, and reporting functions on a separate processor?
Review the Screenshot: Given the network diagram, traffic must be permitted for SSH and MYSQL from the DMZ to the SERVER zones, crossing two firewalls. In addition, traffic should be permitted from the SERVER zone to the DMZ on SSH only. Which rule group enables the required traffic? A) B) C) D)
An administrator needs to add capability to perform real-time signature lookups to block or sinkhole all known malware domains. Which type of single unified engine will get this result?
Which order of steps is the correct way to create a static route?
Which security profile will provide the best protection against ICMP floods, based on individual combinations of a packet`s source and destination IP address?
What are three valid source or D=destination conditions available as Security policy qualifiers? (Choose three.)