PSE-Strata Dumps PSE-Strata Braindumps

PSE-Strata Real Questions PSE-Strata Practice Test PSE-Strata Actual Questions


Palo-Alto


PSE-Strata


Palo Alto Networks System Engineer Professional Strata


https://killexams.com/pass4sure/exam-detail/PSE-Strata


Question: 39

As you prepare to scan your Amazon S3 account, what enables Prisma service permission to access Amazon S3?

  1. access key ID

  2. secret access key

  3. administrative Password

  4. AWS account ID


Answer: A Explanation:

https://docs.paloaltonetworks.com/prisma/prisma-saas/prisma-saas-admin/secure-cloud-apps/add-cloud-apps-to-prisma-saas/begin-scanning-an-amazon-s3-app.html


Question: 40

XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy . Which two features must be enabled to meet the customer’s requirements? (Choose two.)

  1. Policy-based forwarding

  2. HA active/active

  3. Virtual systems

  4. HA active/passive


Answer: A,B Explanation:

https://www.paloaltonetworks.com/documentation/71/pan-os/pan-os/high-availability/route-based-redundancy


Question: 41


A service provider has acquired a pair of PA-7080s for its data center to secure its customer base’s traffic. The server provider’s traffic is largely generated by smart phones and averages 6.000,000 concurrent sessions.


Which Network Processing Card should be recommended in the Bill of Materials?

A. PA-7000-20GQ-NPC B. PA-7000-40G-NPC

C. PA-7000-20GQXM-NPC D. PA-7000-20G-NPC


Answer: C


Question: 42


Which Palo Alto Networks pre-sales tool involves approximately 4 hour interview to discuss a customer’s current security posture?

  1. BPA

  2. PPA

  3. Expedition

  4. SLR


Answer: A


Question: 43


Which three settings must be configured to enable Credential Phishing Prevention? (Choose three.)

  1. define an SSL decryption rulebase

  2. enable User-ID

  3. validate credential submission detection

  4. enable App-ID

  5. define URL Filtering Profile


Answer: B,C,E Explanation:

https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/threat-prevention/prevent-credential-phishing.html


Question: 44


Which option is required to Activate/Retrieve a Device Management License on the M-100 Appliance after the Auth Codes have been activated on the Palo Alto Networks Support Site?

  1. Generate a Stats Dump File and upload it to the Palo Alto Networks support portal

  2. Select Panorama > Licenses and click Activate feature using authorization code

  3. Generate a Tech Support File and call PANTAC

  4. Select Device > Licenses and click Activate feature using authorization code


Answer: B


Question: 45


Which CLI command will allow you to view latency, jitter and packet loss on a virtual SD-WAN interface? A)


B)



C)



D)



  1. Option

  2. Option

  3. Option

  4. Option

Explanation:


https://docs.paloaltonetworks.com/sd-wan/1-0/sd-wan-admin/troubleshooting/use-cli-commands-for-sd-wan-tasks.html


Question: 46


Which license is required to receive weekly dynamic updates to the correlation objects on the firewall and Panorama?

  1. WildFire on the firewall, and AutoFocus on Panorama

  2. Threat Prevention on the firewall, and Support on Panorama

  3. GlobalProtect on the firewall, and Threat Prevention on Panorama

  4. URL Filtering on the firewall, and MineMeld on Panorama


Answer: B


Question: 47


A customer is concerned about malicious activity occurring directly on their endpoints and will not be visible to their firewalls.


Which three actions does the Traps agent execute during a security event, beyond ensuring the prevention of this activity? (Choose three.)

  1. Informs WildFire and sends up a signature to the Cloud

  2. Collects forensic information about the event

  3. Communicates the status of the endpoint to the ESM

  4. Notifies the user about the event

  5. Remediates the event by deleting the malicious file


Answer: B,C,D Explanation:

https://investors.paloaltonetworks.com/node/11156/html


Question: 48


An administrator wants to justify the expense of a second Panorama appliance for HA of the management layer. The customer already has multiple M-100s set up as a log collector group .

What are two valid reasons for deploying Panorama in High Availability? (Choose two.)

  1. Control of post rules

  2. Control local firewall rules

  3. Ensure management continuity

  4. Improve log collection redundancy


Answer: C,D


Question: 49


Which three items contain information about Command-and-Control (C2) hosts? (Choose three.)

  1. Threat logs

  2. WildFire analysis reports

  3. Botnet reports

  4. Data filtering logs

  5. SaaS reports

Question: 50


How do you configure the rate of file submissions to WildFire in the NGFW?

  1. based on the purchased license uploaded

  2. QoS tagging

  3. maximum number of files per minute

  4. maximum number of files per day


Answer: C Explanation:

https://www.paloaltonetworks.com/documentation/80/wildfire/wf_admin/submit-files-for-wildfire-analysis/firewall-file-forwarding-capacity-by-model