Palo Alto Networks PCSAE Exam Questions Instant Access

Question 1

An engineer wants to customize the regex for the default IP indicator type. How can this change be implemented?

ACreate a new indicator type and disable the built-in IP indicator

BEdit the regex of the default IP Indicator

CAdd a new server configuration key that will overwrite the default regex of the IP indicator

DDelete the default IP indicator

Answer : A

Question 2

Whar are possible war room result (entry) types?

AContext, file, error, image

BNote, indicator, error, image

CVideo, file, error, image

DNote, file, error, image

Answer : B

Question 3

Which two reasons would lead an engineer to create a custom widget? (Choose two.)

ATo visualize server configuration keys

BTo visualize XSOAR list data

CTo visualize complex incident data calculations

DTo visualize context data

ETo visualize a custom query

Answer : D, E

Question 4

What is the difference between labels and fields?

AFields can be used in playbooks and labels cannot

BFields are indexed in the database and labels are not

CLabels can be used in queries and fields cannot

DLabels are indexed in the database and fields are not

Answer : C

Question 5

Can an automation script execute an integration command and an integration command execute an automation script?

AAn automation script cannot execute an integration command and an integration command cannot execute an automation script

BAn automation script can execute an integration command and an integration command cannot execute an automation script

CAn automation script cannot execute an integration command and an integration command can execute an automation script

DAn automation script can execute an integration command and an integration command can execute an automation script

Answer : B

Question 6

Which two methods will allow data to be saved in incident fields within a playbook? (Choose two.)

AsetFields

BField mapping

CsetIncident

DLayout inline editing

Answer : B, C

Question 7

An engineer deployed two different instances of Active Directory for each organization site. As part of account enrichment use case, the engineer would like to delete a user from one specific site.

Which command will accomplish this?

Arun 'ad-delete-user' command with 'user-dn' arg and using-brand=''Active Directory Query v2''

Brun 'ad-delete-user' command with 'user-dn' arg and raw-response=true

Crun 'ad-delete-user' command with 'user-dn' arg and ignore-outputs=true

Drun 'ad-delete-user' command with 'user-dn' arg and using=''Active Directory
Query v2_instance_1''

Answer : D

Palo Alto Networks Certified Security Automation Engineer PCSAE Exam Questions