Palo Alto Networks PSE-Endpoint Exam Practice Test Instant Access

Question 1

Uploads to the ESM Sever are failing.

How can the mechanism for forensic and WildFire uploads be tested from the endpoint?

AUse BITS commands in PowerShell to send a file to the ESM Server

BUse curl to execute a POST operation

CUse SCP commands from a ssh client to transfer a file to the ESM Server

DClick Check-in now in the agent console

Answer : D

Question 2

An administrator has installed Traps 4.0. The administrator wants to test the malware protections provided. What sample should they use to test the protections provided by Traps?

AA sample with a low number of hits in Virus Total

BA toolbar package known to be flagged as grayware by Traps

CA sample known to generate false positives in the production environment

DAn MS Office document which contains a ransomware macro

Answer : D

Question 3

A company wants to implement a new Virtual Desktop Infrastructure (VDI) in which the endpoints are protected with Traps. It must select a VDI platform that is supported by Palo Alto Networks for Traps use.

Which two platform are supported? (Choose two.)

ACitrix XenDesktop

BVMware Horizon View

CListeq

DNimboxx

Answer : A, B

Question 4

Which two enhanced key usage purposes are necessary when creating an SSL certificate for an ESM server? (Choose two.)

AFile Recovery

BServer Authentication

CClient Authentication

DKey Recovery

Answer : B, C

Question 5

A large manufacturer is planning to roll out Traps to 75,000 endpoints. Their environment consists of three major sites with 24,000 endpoints each, plus about 3,000 remote endpoints in smaller remote locations using always-on VPN connections to a single one of the major sites. The customer wants to minimize network traffic between the major sites, but all endpoints have internet access. The customer is looking for a centrally managed solution with common reporting and management for all endpoints in the environment.

Which design option would be appropriate for this environment?

APlace the Traps database. ESM Console and two ESM core servers in the large site hosting the VPN gateway, and force all endpoints to use VPN at all times.

BPlace the Traps database, ESM Console and seven ESM core servers in a public-cloud environment where the ESM Core servers are accessible from the internet.

CPlace a Traps database, ESM Console and an ESM core server in each of the three large sites.

DPlace the Traps database and ESM Console in one of the major sites, and one ESM core server in each of the three major sites.

Answer : D

Question 6

A customer has an environment with the following:

* 1,000 agents communicating over SSL with two servers - one containing the ESM Server and another one where the ESM Console is installed

* BitsUploads resides on the ESM Console server

* ESM Server and Console are using the default pods tor communication

In a scenario where a file is failing to be uploaded from macOS, which three reasons could be directly related to the failure? (Choose three.)

ATraps agent is not able to check in with the ESM Server

BThe rate of upload is lower than 100Kb/S

CThe BITS address in the ESM is incorrect

DPort 2125 is blocked on the server which hosts BitsUploads

EPort 443 is blocked on the server which hosts BitsUploads

Answer : A, C, E

Question 7

An administrator receives a number of email alerts indicating WildFire has prevented a malicious activity. All the prevention events refer to launching an Install Wizard that has received a benign verdict from WildFire. All prevention events are reported on a subset of endpoints, that have recently been migrated Mom another Traps deployment.

Which two troubleshooting actions are relevant to this investigation? (Choose two.)

ACheck that the servers xml file has been cleared on the migrated endpoints.

BCheck that the ClientInfoHash tag has been cleared on the migrated endpoints.

CCheck that the actions xml file has not been cleared on the migrated endpoints.

DCheck that the WildFire cache has been cleared on the migrated endpoints.

Answer : A, D

Palo Alto Networks PSE Endpoint Professional PSE-Endpoint Exam Practice Test