989 お客様のコメント
質問 1:
What are two reasons a customer would leverage Panorama to manage their Prisma Access deployment instead of Strata Cloud Manager? (Choose two.)
A. Panorama manages users via ADEM.
B. Panorama standardizes Security policies across platforms.
C. Panorama is managing the customers' NGFWs.
D. Panorama manages Prisma SD-WAN policies.
正解:B,C
質問 2:
Which statement describes the data loss prevention (DLP) add-on?
A. It employs automated policy enforcement to allow trusted behavior with a new Device-ID policy construct.
B. It enables data sharing with third-party tools such as security information and event management (SIEM) systems.
C. It prevents phishing attacks by controlling the sites to which users can submit valid corporate credentials.
D. It is a centrally delivered cloud service with unified detection policies that can be embedded in existing control points.
正解:D
質問 3:
A customer is concerned that they are not getting notifications of infrastructure upgrades.
Where should this customer look in Strata Cloud Manager to validate who is getting notified about infrastructure events?
A. Incidents & Alerts --> Notification Profiles
B. Reports --> Scheduled Reports
C. Users --> User Roles and Permissions
D. Configuration --> Network Settings
正解:A
質問 4:
Which action protects against port scans from the internet?
A. Assign Security profiles to Security policy rules for traffic sourcing from the untrust zone.
B. Apply a Zone Protection profile on the zone of the ingress interface.
C. Assign an Interface Management profile to the zone of the ingress surface.
D. Apply App-ID Security policy rules to block traffic sourcing from the untrust zone.
正解:B
質問 5:
Which two features are included in the Palo Alto Networks Standard Support plan? (Choose two.)
A. Telephone support (24/7)
B. Access to KB and online documentation
C. Access to Support Portal
D. Customer journey kickoff and alignment
正解:B,C
質問 6:
Which two prerequisites must an environment meet to onboard Prisma Access mobile users?
(Choose two.)
A. BGP must be configured so that service connection networks can be advertised to the mobile gateways.
B. Zoning must be configured to require a user ID for the mobile users trust zone.
C. Mobile user subnet and DNS portal name must be configured.
D. Mapping of trust and untrust zones must be configured.
正解:B,C
質問 7:
Which secure access service edge (SASE) networking component inspects web-based protocols and traffic to securely connect users to applications?
A. cloud access security broker (CASB)
B. secure web gateway (SWG)
C. SD-WAN
D. proxy
正解:B
質問 8:
Which CLI command allows visibility into SD-WAN events such as path selection and path quality measurements?
A. >show sdwan path-monitor stats vif
B. >show sdwan session distribution policy-name
C. >show sdwan event
D. >show sdwan connection all |
正解:C
質問 9:
Which two services are part of the Palo Alto Networks cloud-delivered security services (CDSS) package? (Choose two.)
A. virtual desktop infrastructure (VDI)
B. security information and event management (SIEM)
C. Advanced URL Filtering (AURLF)
D. Internet of Things (IoT) Security
正解:C,D
What are two reasons a customer would leverage Panorama to manage their Prisma Access deployment instead of Strata Cloud Manager? (Choose two.)
A. Panorama manages users via ADEM.
B. Panorama standardizes Security policies across platforms.
C. Panorama is managing the customers' NGFWs.
D. Panorama manages Prisma SD-WAN policies.
正解:B,C
質問 2:
Which statement describes the data loss prevention (DLP) add-on?
A. It employs automated policy enforcement to allow trusted behavior with a new Device-ID policy construct.
B. It enables data sharing with third-party tools such as security information and event management (SIEM) systems.
C. It prevents phishing attacks by controlling the sites to which users can submit valid corporate credentials.
D. It is a centrally delivered cloud service with unified detection policies that can be embedded in existing control points.
正解:D
質問 3:
A customer is concerned that they are not getting notifications of infrastructure upgrades.
Where should this customer look in Strata Cloud Manager to validate who is getting notified about infrastructure events?
A. Incidents & Alerts --> Notification Profiles
B. Reports --> Scheduled Reports
C. Users --> User Roles and Permissions
D. Configuration --> Network Settings
正解:A
質問 4:
Which action protects against port scans from the internet?
A. Assign Security profiles to Security policy rules for traffic sourcing from the untrust zone.
B. Apply a Zone Protection profile on the zone of the ingress interface.
C. Assign an Interface Management profile to the zone of the ingress surface.
D. Apply App-ID Security policy rules to block traffic sourcing from the untrust zone.
正解:B
質問 5:
Which two features are included in the Palo Alto Networks Standard Support plan? (Choose two.)
A. Telephone support (24/7)
B. Access to KB and online documentation
C. Access to Support Portal
D. Customer journey kickoff and alignment
正解:B,C
質問 6:
Which two prerequisites must an environment meet to onboard Prisma Access mobile users?
(Choose two.)
A. BGP must be configured so that service connection networks can be advertised to the mobile gateways.
B. Zoning must be configured to require a user ID for the mobile users trust zone.
C. Mobile user subnet and DNS portal name must be configured.
D. Mapping of trust and untrust zones must be configured.
正解:B,C
質問 7:
Which secure access service edge (SASE) networking component inspects web-based protocols and traffic to securely connect users to applications?
A. cloud access security broker (CASB)
B. secure web gateway (SWG)
C. SD-WAN
D. proxy
正解:B
質問 8:
Which CLI command allows visibility into SD-WAN events such as path selection and path quality measurements?
A. >show sdwan path-monitor stats vif
B. >show sdwan session distribution policy-name
C. >show sdwan event
D. >show sdwan connection all |
正解:C
質問 9:
Which two services are part of the Palo Alto Networks cloud-delivered security services (CDSS) package? (Choose two.)
A. virtual desktop infrastructure (VDI)
B. security information and event management (SIEM)
C. Advanced URL Filtering (AURLF)
D. Internet of Things (IoT) Security
正解:C,D
Sawachi -
Pass4Testの商品はどれも優秀すぎます。私は1日4時間を3日で合格できました。