nerdexam
Palo_Alto_Networks

NETSEC-GENERALIST · Question #66

Which two components of a Security policy, when configured, allow third-party contractors access to internal applications outside business hours? (Choose two.)

The correct answer is A. User-ID B. Schedule. To restrict access to specific users at specific times, two Security policy components are required. User-ID (A) identifies who the traffic belongs to, enabling the policy to target third-party contractors specifically rather than all users. Schedule (B) defines the days and time

Configure Security Policies

Question

Which two components of a Security policy, when configured, allow third-party contractors access to internal applications outside business hours? (Choose two.)

Options

  • AUser-ID
  • BSchedule
  • CService
  • DApp-ID

How the community answered

(24 responses)
  • A
    79% (19)
  • C
    8% (2)
  • D
    13% (3)

Explanation

To restrict access to specific users at specific times, two Security policy components are required. User-ID (A) identifies who the traffic belongs to, enabling the policy to target third-party contractors specifically rather than all users. Schedule (B) defines the days and time windows during which the rule is active, enabling enforcement only outside business hours. Service (C) specifies ports and protocols but does not address identity or time constraints. App-ID (D) identifies the application being used but alone cannot enforce time-based or user-based access restrictions - it would need to be combined with User-ID and Schedule.

Topics

#Security Policy Configuration#User-ID#Schedules#Access Control

Community Discussion

No community discussion yet for this question.

Full NETSEC-GENERALIST Practice