Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
MuleSoft
All Vendors
  2. Home
  3. Exams
  4. Palo Alto Networks
  5. PCNSE

Free PCNSE Exam Braindumps (page: 7)

Page 7 of 152
PDF with 606 Questions

What are two benefits of nested device groups in Panorama? (Choose two.)

  1. Reuse of the existing Security policy rules and objects
  2. Requires configuring both function and location for every device
  3. All device groups inherit settings from the Shared group
  4. Overwrites local firewall configuration

Answer(s): A,C



Which Captive Portal mode must be configured to support MFA authentication?

  1. NTLM
  2. Redirect
  3. Single Sign-On
  4. Transparent

Answer(s): B


Reference:

https://www.paloaltonetworks.com/documentation/80/pan-os/pan-os/authentication/configure-multi- factor-authentication



An administrator needs to implement an NGFW between their DMZ and Core network. EIGRP Routing between the two environments is required.

Which interface type would support this business requirement?

  1. Virtual Wire interfaces to permit EIGRP routing to remain between the Core and DMZ
  2. Layer 3 or Aggregate Ethernet interfaces, but configuring EIGRP on subinterfaces only
  3. Tunnel interfaces to terminate EIGRP routing on an IPsec tunnel (with the GlobalProtect License to support LSVPN and EIGRP protocols)
  4. Layer 3 interfaces, but configuring EIGRP on the attached virtual router

Answer(s): A



A speed/duplex negotiation mismatch is between the Palo Alto Networks management port and the switch port to which it connects.

How would an administrator configure the interface to 1Gbps?

  1. set deviceconfig interface speed-duplex 1Gbps-full-duplex
  2. set deviceconfig system speed-duplex 1Gbps-duplex
  3. set deviceconfig system speed-duplex 1Gbps-full-duplex
  4. set deviceconfig Interface speed-duplex 1Gbps-half-duplex

Answer(s): C


Reference:

https://live.paloaltonetworks.com/t5/Configuration-Articles/How-to-Change-the-Speed-and-Duplex-of-the-Management-Port/ta-p/59034






Post your Comments and Discuss Palo Alto Networks PCNSE exam prep with other Community members:

PCNSE Exam Discussions & Posts