CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Palo Alto Networks
  5. PCNSE

Free PCNSE Exam Braindumps (page: 61)

Page 60 of 152
PDF with 619 Questions

What happens to traffic traversing SD-WAN fabric that doesn't match any SD-WAN policies?

  1. Traffic is dropped because there is no matching SD-WAN policy to direct traffic.
  2. Traffic matches a catch-all policy that is created through the SD-WAN plugin.
  3. Traffic matches implied policy rules and is redistributed round robin across SD-WAN links.
  4. Traffic is forwarded to the first physical interface participating in SD-WAN based on lowest interface number (i.e., Eth1/1 over Eth1/3).

Answer(s): C


Reference:

https://docs.paloaltonetworks.com/sd-wan/1-0/sd-wan-admin/configure-sd-wan/distribute-unmatched-sessions.html



A remote administrator needs firewall access on an untrusted interface. Which two components are required on the firewall to configure certificate-based administrator authentication to the web Ul? (Choose two.)

  1. certificate authority (CA) certificate
  2. server certificate
  3. client certificate
  4. certificate profile

Answer(s): A,D


Reference:

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/firewall-administration/manage-firewall-administrators/configure-administrative-accounts-and-authentication/configure-certificate-based-administrator-authentication-to-the-web-interface.html



An administrator with 84 firewalls and Panorama does not see any WildFire logs in Panorama.
All 84 firewalls have an active WildFire subscription. On each firewall, WildFire logs are available.

This issue is occurring because forwarding of which type of logs from the firewalls to Panorama is missing?

  1. WildFire logs
  2. System logs
  3. Threat logs
  4. Traffic logs

Answer(s): A


Reference:

https://docs.paloaltonetworks.com/panorama/8-1/panorama-admin/manage-log-collection/configure-log-forwarding-to-panorama.html



A company wants to use their Active Directory groups to simplify their Security policy creation from Panorama.

Which configuration is necessary to retrieve groups from Panorama?

  1. Configure an LDAP Server profile and enable the User-ID service on the management interface.
  2. Configure a group mapping profile to retrieve the groups in the target template.
  3. Configure a Data Redistribution Agent to receive IP User Mappings from User-ID agents.
  4. Configure a master device within the device groups.

Answer(s): D


Reference:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PMtpCAG






Post your Comments and Discuss Palo Alto Networks PCNSE exam with other Community members:

PCNSE Exam Discussions & Posts