Palo Alto Networks PSE-Endpoint PSE Endpoint Professional Exam Practice Test

Page: 1 / 14
Total 45 questions
Question 1

Traps agents use a default password for uninstallation in the event that they never communicate with their ESM server. Identify the password.



Answer : D


Question 2

In a scenario that macOS Traps logs failed to be uploaded to the forensic folder, where will the user on the macOS host be able to find to collected logs?



Answer : D


Question 3

Which software category is most likely to cause a conflict with the Traps agent?



Answer : A


Question 4

Assume a Child Process Protection rule exists for powershell.exe in Traps v 4.0. Among the items on the blacklist is ipconfig.exe. How can an administrator permit powershell.exe to execute ipconfig.exe without altering the rest of the blacklist?



Answer : A


Question 5

A customer has an environment with the following:

* 1,000 agents communicating over SSL with two servers - one containing the ESM Server and another one where the ESM Console is installed

* BitsUploads resides on the ESM Console server

* ESM Server and Console are using the default pods tor communication

In a scenario where a file is failing to be uploaded from macOS, which three reasons could be directly related to the failure? (Choose three.)



Answer : A, C, E


Question 6

A deployment contains some machines that are not part of the domain. The Accounting and Sales departments are two of these.

How can a policy of WildFire notification be applied to Accounting, and a policy of WildFire prevention be applied to Sales, while not affecting any other WildFire policies?



Answer : C


Question 7

There are two custom policy rules in ESM Console. Policy rule number 1000 turns ROP off for winword.exe. Policy rule number 1001 turns ROP on for winword.exe

What is the ROP module status for winword.exe?



Answer : B


Page:    1 / 14   
Total 45 questions