ExamGecko
Ask Question

Palo Alto Networks PCNSE Practice Test - Questions Answers, Page 45

Question list
Search

List of questions

Search

Related questions











Question 441

Report
Export
Collapse

A company has a PA-3220 NGFW at the edge of its network and wants to use active directory groups in its Security policy rules. There are 1500 groups in its active directory. An engineer has been provided 800 active directory groups to be used in the Security policy rules.

What is the engineer's next step?

Become a Premium Member for full access
  Unlock Premium Member

Question 442

Report
Export
Collapse

An engineer is configuring secure web access (HTTPS) to a Palo Alto Networks firewall for management.

Which profile should be configured to ensure that management access via web browsers is encrypted with a trusted certificate?

Become a Premium Member for full access
  Unlock Premium Member

Question 443

Report
Export
Collapse

An organization has recently migrated its infrastructure and configuration to NGFWs, for which Panorama manages the devices. The organization is coming from a L2-L4 firewall vendor, but wants to use App-ID while identifying policies that are no longer needed.

Which Panorama tool can provide a solution?

Become a Premium Member for full access
  Unlock Premium Member

Question 444

Report
Export
Collapse

A new firewall has the Threat Prevention subscription, but the Antivirus does not appear in Dynamic Updates.

What must occur to have Antivirus signatures update?

Become a Premium Member for full access
  Unlock Premium Member

Question 445

Report
Export
Collapse

An existing log forwarding profile is currently configured to forward all threat logs to Panorama. The firewall engineer wants to add syslog as an additional log forwarding method. The requirement is to forward only medium or higher severity threat logs to syslog. Forwarding to Panorama must not be changed.

Which set of actions should the engineer take to achieve this goal?

Become a Premium Member for full access
  Unlock Premium Member

Question 446

Report
Export
Collapse

An administrator plans to install the Windows-Based User-ID Agent to prevent credential phishing.

Which installer package file should the administrator download from the support site?

Become a Premium Member for full access
  Unlock Premium Member

Question 447

Report
Export
Collapse

An administrator is tasked to provide secure access to applications running on a server in the company's on-premises datacenter.

What must the administrator consider as they prepare to configure the decryption policy?

Become a Premium Member for full access
  Unlock Premium Member

Question 448

Report
Export
Collapse

When creating a Policy-Based Forwarding (PBF) policy, which two components can be used? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 449

Report
Export
Collapse

An administrator configures HA on a customer's Palo Alto Networks firewalls with path monitoring by using the default configuration values.

What are the default values for ping interval and ping count before a failover is triggered?

Become a Premium Member for full access
  Unlock Premium Member

Question 450

Report
Export
Collapse

An administrator is troubleshooting intermittent connectivity problems with a user's GlobalProtect connection. Packet captures at the firewall reveal missing UDP packets, suggesting potential packet loss on the connection. The administrator aims to resolve the issue by enforcing an SSL tunnel over TCP specifically for this user.

What configuration change is necessary to implement this troubleshooting solution for the user?

Become a Premium Member for full access
  Unlock Premium Member
Total 470 questions
Go to page: of 47