PCNSC Online Practice Questions and Answers

Which three authentication faction factors does PAN-OS software support for MFA? (Choose three.)

A. Voice

B. Pull

C. SMS

D. Push

E. Okta Adaptive

An administrator has users accessing network resources through Citrix XenApp 7 .x.

Which User-ID mapping solution will map multiple mat who using Citrix to connect to the network and access resources?

A. Client Probing

B. Globa1Protect

C. Terminal Services agent

D. Syslog Monitoring

Which two benefits come from assigning a Decrypting Profile to a Decryption rule with a" NO Decrypt" action? (Choose two.)

A. Block sessions with unsuspected cipher suites

B. Block sessions with untrusted issuers

C. Block credential phishing.

D. Block sessions with client authentication

E. Block sessions with expired certificates

Which feature prevents the submission of corporate login information into website forms?

A. credential submission prevention

B. file blocking

C. User-ID

D. data filtering

A client has a sensitive application server in their data center and is particularly concerned about resource exhaustion because of distributed denial-of-service attacks.

A. Define a custom App-ID to ensure that only legitimate application traffic reaches the server

B. Add a DoS Protection Profile with defined session count.

C. Add a Vulnerability Protection Profile to block the attack.

D. Add QoS Profiles to throttle incoming requests.

What should an administrator consider when planning to revert Panorama to a pre-PAN-OS 8.1 version?

A. When Panorama is reverted to an earlier PAN-OS release, variable used in template stacks will be removed authentically.

B. Panorama cannot be reverted to an earlier PAN-OS release if variables are used in templates or stacks.

C. An administrator must use the Expedition tool to adapt the configuration to the pre-pan-OS 8.1 state.

D. Administrators need to manually update variable characters to those to used in pre-PAN-OS 8.1.

Which feature can be configured on VM-Series firewalls'?

A. aggregate interlaces

B. multiple virtual systems

C. Globallprotect

D. machine learning

When is the content inspection performed in the packet flow process?

A. after the SSL Proxy re-encrypts the packet

B. before the packet forwarding process

C. after the application has been identified

D. before session lookup

Which method will dynamically register tags on the Palo Alto Networks NGFW?

A. Restful API or the VMware API on the firewall or on the User.-D agent or the ready -only domain controller

B. XML API or the VMware API on the firewall on the User-ID agent or the CLI

C. Restful API or the VMware API on the firewall or on the User-ID Agent

D. XML- API or lite VM Monitoring agent on the NGFW or on the User- ID agent

During the packet flow process, which two processes are performed in application identification? (Choose two.)

A. Application changed from content inspection

B. session application identified

C. pattern based application identification

D. application override policy match