PCNSA Free Practice Test

Which definition describes the guiding principle of the zero-trust architecture?

1. A. never trust, never connect
2. B. always connect and verify
3. C. never trust, always verify
4. D. trust, but verity

Correct Answer: C

Reference:
https://www.paloaltonetworks.com/cyberpedia/what-is-a-zero-trust-architecture

An administrator would like to create a URL Filtering log entry when users browse to any gambling website. What combination of Security policy and Security profile actions is correct?

1. A. Security policy = drop, Gambling category in URL profile = allow
2. B. Security policy = den
3. C. Gambling category in URL profile = block
4. D. Security policy = allow, Gambling category in URL profile = alert
5. E. Security policy = allo
6. F. Gambling category in URL profile = allow

Correct Answer: C

Which prevention technique will prevent attacks based on packet count?

1. A. zone protection profile
2. B. URL filtering profile
3. C. antivirus profile
4. D. vulnerability profile

Correct Answer: A

What are three valid information sources that can be used when tagging users to dynamic user groups? (Choose three.)

1. A. Blometric scanning results from iOS devices
2. B. Firewall logs
3. C. Custom API scripts
4. D. Security Information and Event Management Systems (SIEMS), such as Splun
5. E. DNS Security service

Correct Answer: BCE

Which plane on a Palo alto networks firewall provides configuration logging and reporting functions on a separate processor?

1. A. data
2. B. network processing
3. C. management
4. D. security processing

Correct Answer: C