Palo Alto Networks PCNSA Practice Test - Questions Answers, Page 4
Related questions
Question 31
Which interface type is used to monitor traffic and cannot be used to perform traffic shaping?
Question 32
Which administrator type provides more granular options to determine what the administrator can view and modify when creating an administrator account?
Question 33
Which administrator type utilizes predefined roles for a local administrator account?
Explanation:
References:
Question 34
Which two security profile types can be attached to a security policy? (Choose two.)
Explanation:
References:
Question 35
The CFO found a USB drive in the parking lot and decide to plug it into their corporate laptop. The USB drive had malware on it that loaded onto their computer and then contacted a known command and control (CnC) server, which ordered the infected machine to begin Exfiltrating data from the laptop.
Which security profile feature could have been used to prevent the communication with the CnC server?
Explanation:
References:
Question 36
Which user mapping method could be used to discover user IDs in an environment with multiple Windows domain controllers?
Question 37
What are three differences between security policies and security profiles? (Choose three.)
Question 38
Given the image, which two options are true about the Security policy rules. (Choose two.)
Explanation:
In the Allow FTP to web server rule, FTP is allowed using port based rule and not APP-ID.
Question 39
Which type of security rule will match traffic between the Inside zone and Outside zone, within the Inside zone, and within the Outside zone?
Explanation:
References:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClomCAC
Question 40
Which Palo Alto Networks firewall security platform provides network security for mobile endpoints by inspecting traffic deployed as internet gateways?
Question