What must first be created on the firewall for SAML authentication to be configured?
Answer : B
A server profile identifies the external authentication service and instructs the firewall on how to connect to that authentication service and access the authentication credentials for your users. To configure SAML authentication, you must create a server profile and register the firewall and the identity provider (IdP) with each other. You can import a SAML metadata file from the IdP to automatically create a server profile and populate the connection, registration, and IdP certificate information.Reference:Configure SAML Authentication,Set Up SAML Authentication,Introduction to SAML
What is a default setting for NAT Translated Packets when the destination NAT translation is selected as Dynamic IP (with session distribution)?
Answer : C
When the destination NAT translation is selected as Dynamic IP (with session distribution), the firewall uses a round-robin algorithm to distribute sessions among the available IP addresses that are resolved from the FQDN.This option allows you to load-balance traffic to multiple servers that have dynamic IP addresses1.Reference:Destination NAT,NAT,Getting Started: Network Address Translation (NAT).
What is used to monitor Security policy applications and usage?
Answer : A
A systems administrator momentarily loses track of which is the test environment firewall and which is the production firewall. The administrator makes changes to the candidate configuration of the production firewall, but does not commit the changes. In addition, the configuration was not saved prior to
making the changes.
Which action will allow the administrator to undo the changes?
Answer : D
Reverting to the running configuration will undo the changes made to the candidate configuration since the last commit. This operation will replace the settings in the current candidate configuration with the settings from the running configuration.The firewall provides the option to revert all the changes or only specific changes by administrator or location1.Reference:Revert Firewall Configuration Changes,How to Revert to a Previous Configuration,How to revert uncommitted changes on the firewall?.
Which two addresses should be reserved to enable DNS sinkholing? (Choose two.)
Which path in PAN-OS 10.2 is used to schedule a content update to managed devices using Panorama?
Which two actions are needed for an administrator to get real-time WildFire signatures? (Choose two.)