CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Palo Alto Networks
  5. PCSAE

Free PCSAE Exam Braindumps (page: 11)

Page 10 of 22
PDF with 171 Questions

An engineer is developing a playbook that will be run multiple times for testing purposes. What is the recommended first task to be used in the playbook?

  1. DeleteContext
  2. GenerateTest
  3. PrintContext
  4. SetContext

Answer(s): A


Reference:

https://xsoar.pan.dev/docs/integrations/test-playbooks



What is the most effective way to correlate multiple raw events coming from a SIEM and link them together?

  1. Process all alerts by running the respective playbook and link related incidents during post-processing
  2. Ingest all raw events, run a custom script to find the relationship between them and proceed to link them together
  3. Configure a pre-process rule to link related events as they are ingested
  4. Manually go through the incidents created by the raw events and link related incidents

Answer(s): A



Which two incident search queries are valid? (Choose two.)

  1. created:>=”7 days”
  2. owner===admin
  3. role is Analyst
  4. status:closed –category:job

Answer(s): A,D


Reference:

https://docs.paloaltonetworks.com/cortex/cortex-xsoar/5-5/cortex-xsoar-admin/cortex-xsoar-overview/how-to-search-in-cortex-xsoar.html



What is the correct expression to use when filtering only PDF files?

  1. Use File.Extension that does not equal (string comparison) PDF
  2. Use File.Name contains PDF
  3. Use File.Extension contains (general) PDF
  4. Use File.Extension equals (string comparison) PDF

Answer(s): B






Post your Comments and Discuss Palo Alto Networks PCSAE exam with other Community members:

PCSAE Discussions & Posts