Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 3
Question list
List of questions
Related questions
Your company requires positive username attribution of every IP address used by wireless devices to support a new compliance requirement. You must collect IP ñto-user mappings as soon as possible with minimal downtime and minimal configuration changes to the wireless devices themselves. The wireless devices are from various manufactures.
Given the scenario, choose the option for sending IP-to-user mappings to the NGFW.
An administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact a command-and-control (C2) server. Which two security profile components will detect and prevent this threat after the firewall's signature database has been updated? (Choose two.)
In which stage of the Cyber-Attack Lifecycle would the attacker inject a PDF file within an email?
Identify the correct order to configure the PAN-OS integrated USER-ID agent.
Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.
Complete the security policy to ensure only Telnet is allowed.
Security Policy: Source Zone: Internal to DMZ Zone __________services "Application defaults", and action = Allow
Based on the security policy rules shown, ssh will be allowed on which port?
Which license must an Administrator acquire prior to downloading Antivirus Updates for use with the firewall?
An administrator notices that protection is needed for traffic within the network due to malicious lateral movement activity. Based on the image shown, which traffic would the administrator need to monitor and block to mitigate the malicious activity?
Given the topology, which zone type should zone A and zone B to be configured with?
To use Active Directory to authenticate administrators, which server profile is required in the authentication profile?
Question