At which stage of the cyber-attack lifecycle would the attacker attach an infected PDF file to an email?
Correct Answer:
A
During the App-ID update process, what should you click on to confirm whether an existing policy rule is affected by an App-ID update?
Correct Answer:
B
Reference:https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/app-id/manage-new-app-ids-introduced-in-content-releases/review-new-app-id-impact-on-existing-policy- rules
Which attribute can a dynamic address group use as a filtering condition to determine its membership?
Correct Answer:
A
Dynamic Address Groups: A dynamic address group populates its members dynamically using looks ups for tags and tag-based filters. Dynamic address groups are very useful if you have an extensive virtual infrastructure where changes in virtual machine location/IP address are frequent. For example, you have a sophisticated failover setup or provision new virtual machines frequently and would like to apply policy to traffic from or to the new machine without modifying the configuration/rules on the firewall. https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/objects/objects- address-groups
Which five Zero Trust concepts does a Palo Alto Networks firewall apply to achieve an integrated approach to prevent threats? (Choose five.)
Correct Answer:
ACDEF
An administrator configured a Security policy rule where the matching condition includes a single application and the action is set to deny. What deny action will the firewall perform?
Correct Answer:
D
