PCNSE · Question #729
PCNSE Question #729: Real Exam Question with Answer & Explanation
Sign in or unlock PCNSE to reveal the answer and full explanation for question #729. The question stem and answer options stay visible for context.
Question
Information Security is enforcing group-based policies by using security-event monitoring on Windows User-ID agents for IP-to-User mapping in the network. During the rollout, Information Security identified a gap for users authenticating to their VPN and wireless networks. Root cause analysis showed that users were authenticating via RADIUS and that authentication events were not captured on the domain controllers that were being monitored. Information Security found that authentication events existed on the Identity Management solution (IDM). There did not appear to be direct integration between PAN-OS and the IDM solution. How can Information Security extract and learn IP-to-user mapping information from authentication events for VPN and wireless users?
Options
- AConfigure the integrated User-ID agent on PAN-OS to accept Syslog messages over TLS.
- BConfigure the User-ID XML API on PAN-OS firewalls to pull the authentication events directly
- CAdd domain controllers that might be missing to perform security-event monitoring for VPN and
- DConfigure the Windows User-ID agents to monitor the VPN concentrators and wireless controllers
Unlock PCNSE to see the answer
You've previewed enough free PCNSE questions. Unlock PCNSE for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.