How is the hit count reset on a rule?
Correct Answer:
A
Where within the firewall GUI can all existing tags be viewed?
Correct Answer:
C
If using group mapping with Active Directory Universal Groups, what must you do when configuring the User-ID?
Correct Answer:
B
✑ If you have Universal Groups, create an LDAP server profile to connect to the root domain of the Global Catalog server on port 3268 or 3269 for SSL, then create another LDAP server profile to connect to the root domain controllers on port 389. This helps ensure that users and group information is available for all domains and subdomains.
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/user-id/map-users-to-groups
In a File Blocking profile, which two actions should be taken to allow file types that support critical apps? (Choose two.)
Correct Answer:
AD
An administrator needs to create a Security policy rule that matches DNS traffic within the LAN zone, and also needs to match DNS traffic within the DMZ zone The administrator does not want to allow traffic between the DMZ and LAN zones.
Which Security policy rule type should they use?
Correct Answer:
C
