Palo Alto Networks PSE-Platform Exam Practice Test Instant Access

Question 1

Which two components must to be configured within User-ID on a new firewall that has been implemented? (Choose two.)

AGroup Mapping

B802.1X Authentication

CProxy Authentication

DUser mapping

Answer : A, D

https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/user-id/enable-user-id

Question 2

Given the following network diagram, an administrator is considering the use of Windows Log Forwarding and Global Catalog servers for User-ID implementation. What are two potential bandwidth and processing bottlenecks to consider? (Choose two.)

AMember Servers

BFirewall

CDomain Controllers

DWindows Server

Answer : A, C

Question 3

A specific URL keeps appearing in URL filtering log entries, it was blocked successfully, but the administrator would like to investigate further.

In which two ways would AutoFocus help this administrator? (Choose two.)

AGenerate a list of IP addresses for use in Dynamic Address Groups on the firewall

BIdentify malicious files associated with this URL

CGenerate a correlation object that can be used to monitor associated activities

DIdentify malware campaigns associated with this URL

Answer : A, D

Question 4

What is the HA limitation specific to the PA-200 appliance?

ACan be deployed in either an active/passive or active/active HA pair

BCan only synchronize configurations and does not support session synchronization

CHas a dedicated HA1 and HA2 ports, but no HA3

DIs the only Palo Alto Networks firewall that does not have any HA capabilities

Answer : B

Question 5

What are two benefits of using Panorama for a customer who is deploying virtual firewalls to secure data center traffic? (Choose two.)

AIt can monitor the virtual firewalls' physical hosts and Vmotion them as necessary.

BIt can bootstrap the virtual firewall for dynamic deployment scenarios

CIt can manage the virtual firewalls' resource use, allowing for VM resource over-subscription.

DIt can provide the Automated Correlation Engine functionality, which the virtual firewalls do not support

Answer : B, D

Question 6

Which four actions can be configured in an Anti-Spyware profile to address command-and-control traffic from compromised hosts? (Choose four.)

AAllow

BDrop

CQuarantine

DRedirect

EAlert

FReset

Answer : A, B, E, F

https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/policy/anti-spyware-profiles.html

Question 7

Which variable is used to regulate the rate of file submission to WildFire?

ABased on the purchase license

BMaximum number of files per minute

CAvailable bandwidth

DMaximum number of files per day

Answer : B

https://www.paloaltonetworks.com/documentation/80/wildfire/wf_admin/submit-files-for-wildfire-analysis/firewall-file-forwarding-capacity-by-model

Palo Alto Networks PSE Platform PSE-Platform Exam Practice Test