PSE-PLATFORM Exam Questions

What are the three benefits of the Palo Alto Networks migration tool? (Choose three.)

Palo Alto Networks publishes updated Command and Control signatures. How frequently should the related signatures schedule be set?

A service provider has acquired a pair of PA-7080s for its data center to secure its customer base's traffic. The server provider's traffic is largely generated by smart phones and...

A customer is worried about unknown attacks, but due to privacy and regulatory issues, won't implement SSL decrypt. How can the platform still address this customer's concern?

Where are three tuning considerations when building a security policy to protect against modern day attacks? (Choose three)

Which three network events are highlighted through correlation objects as a potential security risks? (Choose three.)

A customer is adopting Microsoft Office 365 but is concerned about the potential security exposure that such a move could mean. The security analyst suggests using Aperture and the...

Which license is required to receive weekly dynamic updates to the correlation objects on the firewall and Panorama?

What two advantages of the DNS Sinkholing feature? (Choose two)

Which Palo Alto Networks security platform component should an administrator use to extend policies to remote users are not connecting to the internet from behind a firewall?

How do Highly Suspicious artifacts in-AutoFocus help identify when an unknown, potential zero-day, targeted attack occur to allow one to adjust the security posture?

DNS sinkholing helps identify infected hosts on the protected network using DNS traffic in situations where the firewall cannot see the infected client's DNS query (that is, the fi...

A customer is targeted by a true zero-day, targeted attack. However, the customer is protected by the Palo Alto Networks security platform. The attack leverages a previously unknow...

An SE is preparing an SLR report for a school and wants to emphasize URL filtering capabilities because the school is concerned that its students are accessing inappropriate websit...

A customer is concerned about malicious activity occurring directly on their endpoints and not visible to their firewalls. Which three actions does Traps execute during a security...

What is the HA limitation specific to the PA-200 appliance?

How many recursion levels are supported for compressed files in PAN-OS 8.0?

A customer is seeing an increase in the number of malicious files coming in from undetectable sources in their network. These files include doc and .pdf file types. The customer be...

Which two components must to be configured within User-ID on a new firewall that has been implemented? (Choose two.)

When a customer creates a new SLR report, what is the first step in generating a proper SLR report once logged in to the Partner Portal?

Which three items contain information about Command and Control (C&C) hosts? (Choose three.)

Which option is required to activate/retrieve a Device Management License on the M.100 Appliance after the Auth Codes have been activated on the Palo Alto Networks Support Site?

What are three considerations when deploying User-ID. (Choose three.)

A price sensitive customer wants to prevent attacks on a windows 2008 Virtual Server. The server will max out at 100Mbps but needs to have 45,000 sessions to connect to multiple ho...

Which variable is used to regulate the rate of file submission to WildFire?

Which four steps of the cyberattack lifecycle dose the Palo Alto Networks platform present? (Choose four)

Which certificate can be used to ensure that traffic coming from a specific server remains encrypted?

A client chooses to not block uncategorized websites. Which two additions should be made to help provide some protection? (Choose two.)

Which configuration creates the most comprehensive "best-practice" Anti Spyware profile to prevent command and Control traffic?

Given the following network diagram, an administrator is considering the use of Windows Log Forwarding and Global Catalog servers for User-ID implementation. What are two potential...

What is a best practice when configuring a security policy to completely block a specific application?

What is the recommended way to ensure that firewalls have the most current set of signatures for up-to-date protection?

XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy. Which t...

Which four actions can be configured in an Anti-Spyware profile to address command-and- control traffic from compromised hosts? (Choose four.)

How often are regularly scheduled update for the Anti-virus Application, Threats, and Wildfire subscription databases made available by Palo Alto Networks in PAN-OS 8.0?

Which three signature-based Threat Prevention features of the firewall are informed by intelligence from the Threat Intelligence Cloud? (Choose three.)

In which two cases should the Hardware offering of Panorama be chosen over the Virtual Offering? (Choose two)

Which three methods used to map users to IP addresses are supported in Palo Alto Networks firewalls? (Choose three.)

What are two benefits of using Panorama for a customer who is deploying virtual firewalls to secure data center traffic? (Choose two.)

Because of regulatory compliance a customer cannot decrypt specific types of traffic. Which license should an SE recommend to the customer who will be decrypting traffic on the Pal...

Which three policies or certificates must be configured for SSL Forward Proxy decryption? (Choose three.)

What are two core values of the Palo Alto Network Security Platform? (Choose two)

Which design objective could be satisfied by vsys functionality?

Which functionality is available to firewall users with an active Threat Prevention subscription, but no WildFire license?

How does SSL Forward Proxy decryption work?

Which three actions should be taken before deploying a firewall evaluation unit in the customer's environment? (Choose three.)

What are three sources of malware sample data for the Palo Alto Networks Threat Intelligence Cloud? (Choose three.)

What are three best practices for running an Ultimate Test Drive (UTD)? (Choose three.)

An endpoint, inside an organization, is infected with known malware. The malware attempts to make a command and control connection to a C&C server via the destination IP address. W...

A prospective customer was the victim of a zero-day attack that compromised specific employees, who then became unwitting attack vectors. The customer does not want that to happen...