Palo Alto Networks PSE-Strata Exam Practice Test Instant Access

Question 1

A customer is designing a private data center to host their new web application along with a separate headquarters for users.

Which cloud-delivered security service (CDSS) would be recommended for the headquarters only?

AThreat Prevention

BDNS Security

CWildFire

DAdvanced URL Filtering (AURLF)

Answer : A

Question 2

Within the Five-Step Methodology of Zero Trust, in which step would application access and user access be defined?

AStep 3: Architect a Zero Trust Network

BStep 5. Monitor and Maintain the Network

CStep 4: Create the Zero Trust Policy

DStep 1: Define the Protect Surface

EStep 2 Map the Protect Surface Transaction Flows

Answer : D

Question 3

A WildFire subscription is required for which two of the following activities? (Choose two)

AFilter uniform resource locator (URL) sites by category.

BForward advanced file types from the firewall for analysis.

CUse the WildFire Application Programming Interface (API) to submit website links for analysis

DEnforce policy based on Host Information Profile (HIP)

EDecrypt Secure Sockets Layer (SSL)

Answer : B, C

Question 4

A customer requires protections and verdicts for portable executable (PE) and executable and linkable format (ELF), as well as the ability to integrate with existing security tools.

Which Cloud-Delivered Security Service (CDSS) does Palo Alto Networks provide that will address this requirement?

ADynamic Unpacking

BWildFire

CDNS Security

DFile Blocking profile

Answer : B

Question 5

Which three actions should be taken before deploying a firewall evaluation unt in a customer environment? (Choose three.)

ARequest that the customer make part 3978 available to allow the evaluation unit to communicate with Panorama

BInform the customer that a SPAN port must be provided for the evaluation unit, assuming a TAP mode deployment.

CUpgrade the evaluation unit to the most current recommended firmware, unless a demo of the upgrade process is planned.

DSet expectations for information being presented in the Security Lifecycle Review (SLR) because personal user information will be made visible

EReset the evaluation unit to factory default to ensure that data from any previous customer evaluation is removed

Answer : B, C, E

Question 6

Which three of the following actions must be taken to enable Credential Phishing Prevention? (Choose three.)

AEnable User Credential Detection

BEnable User-ID

CDefine a Secure Sockets Layer (SSL) decryption rule base

DEnable App-ID

EDefine a uniform resource locator (URL) Filtering profile

Answer : A, B, E

Question 7

Which three mechanisms are valid for enabling user mapping? (Choose three.)

ACaptive Portal

BDomain server monitoring

CReverse DNS lookup

DUser behaviour recognition

EClient probing

Answer : A, B, E

Palo Alto Networks PSE-Strata Palo Alto Networks System Engineer - Strata Exam Practice Test