최신 PCNSA 무료덤프 - Palo Alto Networks Certified Network Security Administrator
A company moved its old port-based firewall to a new Palo Alto Networks NGFW 60 days ago. Which utility should the company use to identify out-of-date or unused rules on the firewall?
정답: C
What is considered best practice with regards to committing configuration changes?
정답: A
Which protocol used to map username to user groups when user-ID is configured?
정답: B
Which option lists the attributes that are selectable when setting up an Application filters?
정답: C
Which CLI command will help confirm if FQDN objects are resolved in the event there is a shadow rule?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Which service protects cloud-based applications such as Dropbox and Salesforce by administering permissions and scanning files for sensitive information?
정답: C
In which two Security Profiles can an action equal to the block IP feature be configured? (Choose two.)
정답: A,C
설명: (DumpTOP 회원만 볼 수 있음)
The administrator profile "SYS01 Admin" is configured with authentication profile "Authentication Sequence SYS01," and the authentication sequence SYS01 has a profile list with four authentication profiles:
* Auth Profile LDAP
* Auth Profile Radius
* Auth Profile Local
* Auth Profile TACACS
After a network outage, the LDAP server is no longer reachable. The RADIUS server is still reachable but has lost the "SYS01 Admin" username and password.
What is the "SYS01 Admin" login capability after the outage?
* Auth Profile LDAP
* Auth Profile Radius
* Auth Profile Local
* Auth Profile TACACS
After a network outage, the LDAP server is no longer reachable. The RADIUS server is still reachable but has lost the "SYS01 Admin" username and password.
What is the "SYS01 Admin" login capability after the outage?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Which Security policy action will message a user's browser thai their web session has been terminated?
정답: D
Which two actions are needed for an administrator to get real-time WildFire signatures? (Choose two.)
정답: B,C
설명: (DumpTOP 회원만 볼 수 있음)
Which two statements are true for the DNS security service introduced in PAN-OS version 10.0?
정답: B,C
Which two matching criteria are used when creating a Security policy involving NAT? (Choose two.)
정답: B,C
Which two features can be used to tag a username so that it is included in a dynamic user group? (Choose two.)
정답: B,D
How frequently can wildfire updates be made available to firewalls?
정답: C
A systems administrator momentarily loses track of which is the test environment firewall and which is the production firewall. The administrator makes changes to the candidate configuration of the production firewall, but does not commit the changes. In addition, the configuration was not saved prior to making the changes.
Which action will allow the administrator to undo the changes?
Which action will allow the administrator to undo the changes?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Which three filter columns are available when setting up an Application Filter? (Choose three.)
정답: B,C,E
설명: (DumpTOP 회원만 볼 수 있음)
An internal host wants to connect to servers of the internet through using source NAT.
Which policy is required to enable source NAT on the firewall?
Which policy is required to enable source NAT on the firewall?
정답: B
What is a prerequisite before enabling an administrative account which relies on a local firewall user database?
정답: D
An administrator is trying to enforce policy on some (but not all) of the entries in an external dynamic list.
What is the maximum number of entries that they can be exclude?
What is the maximum number of entries that they can be exclude?
정답: C
What is the purpose of the automated commit recovery feature?
정답: A