CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Palo Alto Networks
  5. PCNSE

Free PCNSE Exam Braindumps (page: 18)

Page 18 of 152
PDF with 606 Questions

Which feature must you configure to prevent users from accidentally submitting their corporate credentials to a phishing website?

  1. URL Filtering profile
  2. Zone Protection profile
  3. Anti-Spyware profile
  4. Vulnerability Protection profile

Answer(s): A


Reference:

https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/threat-prevention/prevent-credential-phishing



How can a candidate or running configuration be copied to a host external from Panorama?

  1. Commit a running configuration.
  2. Save a configuration snapshot.
  3. Save a candidate configuration.
  4. Export a named configuration snapshot.

Answer(s): D


Reference:

https://www.paloaltonetworks.com/documentation/71/panorama/panorama_adminguide/administer-panorama/back-up-panorama-and-firewall-configurations



If an administrator does not possess a website’s certificate, which SSL decryption mode will allow the Palo Alto Networks NGFW to inspect traffic when users browse to HTTP(S) websites?

  1. SSL Forward Proxy
  2. SSL Inbound Inspection
  3. TLS Bidirectional proxy
  4. SSL Outbound Inspection

Answer(s): A



An administrator sees several inbound sessions identified as unknown-tcp in the Traffic logs. The administrator determines that these sessions are form external users accessing the company’s proprietary accounting application. The administrator wants to reliably identify this traffic as their accounting application and to scan this traffic for threats.

Which option would achieve this result?

  1. Create a custom App-ID and enable scanning on the advanced tab.
  2. Create an Application Override policy.
  3. Create a custom App-ID and use the “ordered conditions” check box.
  4. Create an Application Override policy and a custom threat signature for the application.

Answer(s): A



Page 18 of 152



Post your Comments and Discuss Palo Alto Networks PCNSE exam with other Community members:

Lee commented on November 27, 2024
So far so good
UNITED STATES
upvote

Naredn commented on November 22, 2024
Best practices at one place
Anonymous
upvote

Dan commented on September 08, 2024
So far so good
Anonymous
upvote

Eric commented on December 13, 2023
Works great
Anonymous
upvote