PSE-STRATA Online Practice Questions and Answers
Which two features are key in preventing unknown targeted attacks? (Choose two)
A. nighty botnet report
B. App-ID with the Zero Trust model
C. WildFire Cloud threat analysis
D. Single Pass Parallel Processing (SP3)
Which selection must be configured on PAN-OS External Dynamic Lists to support MineMeld indicators?
A. Prototype
B. Inputs
C. Class
D. Feed Base URL
Which two products can send logs to the Cortex Data Lake? (Choose two.)
A. AutoFocus
B. PA-3260 firewall
C. Prisma Access
D. Prisma Public Cloud
Prisma SaaS provides which two SaaS threat prevention capabilities? (Choose two)
A. shellcode protection
B. file quarantine
C. SaaS AppID signatures
D. WildFire analysis
E. remote procedural call (RPC) interrogation
Which three categories are identified as best practices in the Best Practice Assessment tool? (Choose three.)
A. use of decryption policies
B. measure the adoption of URL filters. App-ID. User-ID
C. use of device management access and settings
D. expose the visibility and presence of command-and-control sessions
E. identify sanctioned and unsanctioned SaaS applications
Which two components must be configured within User-ID on a new firewall that has been implemented? (Choose two.)
A. User Mapping
B. Proxy Authentication
C. Group Mapping
D. 802.1X Authentication
Decryption port mirroring is now supported on which platform?
A. all hardware-based and VM-Series firewalls with the exception of VMware NSX. Citrix SDX, or public cloud hypervisors
B. in hardware only
C. only one the PA-5000 Series and higher
D. all hardware-based and VM-Series firewalls regardless of where installed
A customer is designing a private data center to host their new web application along with a separate headquarters for users.
Which cloud-delivered security service (CDSS) would be recommended for the headquarters only?
A. Threat Prevention
B. DNS Security
C. WildFire
D. Advanced URL Filtering (AURLF)
Access to a business site is blocked by URL Filtering inline machine learning (ML) and considered as a false-positive.
How should the site be made available?
A. Disable URL Filtering inline ML
B. Create a custom URL category and add it to the Security policy
C. Create a custom URL category and add it on exception of the inline ML profile
D. Change the action of real-time detection category on URL filtering profile
What are two benefits of the sinkhole Internet Protocol (IP) address that DNS Security sends to the client in place of malicious IP addresses? (Choose two.)
A. The client communicates with it instead of the malicious IP address
B. It represents the remediation server that the client should visit for patching
C. It will take over as the new DNS resolver for that client and prevent further DNS requests from occurring in the meantime
D. In situations where the internal DNS server is between the client and the firewall, it gives the firewall the ability to identify the clients who originated the query to the malicious domain