PSE-Strata Exam Dumps - Palo Alto Networks System Engineer Professional - Strata

Question # 4

Which option is required to Activate/Retrieve a Device Management License on the M-100 Appliance after the Auth Codes have been activated on the Palo Alto Networks Support Site?

Generate a Stats Dump File and upload it to the Palo Alto Networks support portal

Select Panorama > Licenses and click Activate feature using authorization code

Generate a Tech Support File and call PANTAC

Select Device > Licenses and click Activate feature using authorization code

Full Access

Question # 5

Which three categories are identified as best practices in the Best Practice Assessment tool? (Choose three.)

use of decryption policies

measure the adoption of URL filters. App-ID. User-ID

use of device management access and settings

expose the visibility and presence of command-and-control sessions

identify sanctioned and unsanctioned SaaS applications

Full Access

Question # 6

When HTTP header logging is enabled on a URL Filtering profile, which attribute-value can be logged?

X-Forwarded-For

HTTP method

HTTP response status code

Content type

Full Access

Question # 7

Which four actions can be configured in an Anti-Spyware profile to address command-and-control traffic from compromised hosts? (Choose four.)

Quarantine

Allow

Reset

Redirect

Drop

Alert

Full Access

Question # 8

A company has deployed the following

â€¢ VM-300 firewalls in AWS

â€¢ endpoint protection with the Traps Management Service

â€¢ a Panorama M-200 for managing its VM-Series firewalls

â€¢ PA-5220s for its internet perimeter,

â€¢ Prisma SaaS for SaaS security.

Which two products can send logs to the Cortex Data Lake? (Choose two).

Prisma SaaS

Traps Management Service

VM-300 firewalls

Panorama M-200 appliance

Full Access

Question # 9

Which two steps are required to configure the Decryption Broker? (Choose two.)

reboot the firewall to activate the license

activate the Decryption Broker license

enable SSL Forward Proxy decryption

enable a pair of virtual wire interfaces to forward decrypted traffic

Full Access

Question # 10

An SE is preparing an SLR report for a school and wants to emphasize URL filtering capabilities because the school is concerned that its students are accessing inappropriate websites. The URL categories being chosen by default in the report are not highlighting these types of websites. How should the SE show the customer the firewall can detect that these websites are being accessed?

Create a footnote within the SLR generation tool

Edit the Key-Findings text to list the other types of categories that may be of interest

Remove unwanted categories listed under 'High Risk' and use relevant information

Produce the report and edit the PDF manually

Full Access

Question # 11

Which three actions should be taken before deploying a firewall evaluation unt in a customer environment? (Choose three.)

Request that the customer make part 3978 available to allow the evaluation unit to communicate with Panorama

Inform the customer that a SPAN port must be provided for the evaluation unit, assuming a TAP mode deployment.

Upgrade the evaluation unit to the most current recommended firmware, unless a demo of the upgrade process is planned.

Set expectations for information being presented in the Security Lifecycle Review (SLR) because personal user information will be made visible

Reset the evaluation unit to factory default to ensure that data from any previous customer evaluation is removed

Full Access

Question # 12

Which two components must be configured within User-ID on a new firewall that has been implemented? (Choose two.)

User Mapping

Proxy Authentication

Group Mapping

802.1X Authentication

Full Access

Question # 13

The firewall includes predefined reports, custom reports can be built for specific data and actionable tasks, or predefined and custom reports can be combined to compile information needed to monitor network security.

The firewall provides which three types of reports? (Choose three.)

SNMP Reports

PDF Summary Reports

Netflow Reports

Botnet Reports

User or Group Activity Reports

Full Access

Question # 14

Which Security profile on the Next-Generation Firewall (NGFW) includes Signatures to protect against brute force attacks?

Vulnerability Protection profile

Antivirus profile

URL Filtering profile

Anti-Spyware profile

Full Access

Question # 15

The ability to prevent users from resolving internet protocol (IP) addresses to malicious, grayware, or newly registered domains is provided by which Security service?

WildFire

DNS Security

Threat Prevention

loT Security

Full Access

Question # 16

Which three components are specific to the Query Builder found in the Custom Report creation dialog of the firewall? (Choose three.)

Connector

Database

Recipient

Operator

Attribute

Schedule

Full Access

Question # 17

A price-sensitive customer wants to prevent attacks on a Windows Virtual Server. The server will max out at 100Mbps but needs to have 45.000 sessions to connect to multiple hosts within a data center

Which VM instance should be used to secure the network by this customer?

VM-200

VM-100

VM-50

VM-300

Full Access

Question # 18

Which statement is true about Deviating Devices and metrics?

A metric health baseline is determined by averaging the health performance for a given metric over seven days plus the standard deviation

Deviating Device Tab is only available with a SD-WAN Subscription

An Administrator can set the metric health baseline along with a valid standard deviation

Deviating Device Tab is only available for hardware-based firewalls