PCNSA Free Practice Test

What action will inform end users when their access to Internet content is being restricted?

1. A. Create a custom 'URL Category' object with notifications enabled.
2. B. Publish monitoring data for Security policy deny logs.
3. C. Ensure that the 'site access" setting for all URL sites is set to 'alert'.
4. D. Enable 'Response Pages' on the interface providing Internet access.

Correct Answer: D
Reference:https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-web-interface-help/device/device-response-pages.html

Which action would an administrator take to ensure that a service object will be available only to the selected device group?

1. A. create the service object in the specific template
2. B. uncheck the shared option
3. C. ensure that disable override is selected
4. D. ensure that disable override is cleared

Correct Answer: D
https://docs.paloaltonetworks.com/panorama/9-0/panorama-admin/manage- firewalls/manage-device-groups/create-objects-for-use-in-shared-or-device-group-policy

The CFO found a USB drive in the parking lot and decide to plug it into their corporate laptop. The USB drive had malware on it that loaded onto their computer and then contacted a known command and control (CnC) server, which ordered the infected machine to begin Exfiltrating data from the laptop.
Which security profile feature could have been used to prevent the communication with the CnC server?

1. A. Create an anti-spyware profile and enable DNS Sinkhole
2. B. Create an antivirus profile and enable DNS Sinkhole
3. C. Create a URL filtering profile and block the DNS Sinkhole category
4. D. Create a security policy and enable DNS Sinkhole

Correct Answer: A

Which two statements are correct about App-ID content updates? (Choose two.)

1. A. Updated application content may change how security policy rules are enforced
2. B. After an application content update, new applications must be manually classified prior to use
3. C. Existing security policy rules are not affected by application content updates
4. D. After an application content update, new applications are automatically identified and classified

Correct Answer: AD

Which Security policy action will message a user's browser thai their web session has been terminated?
Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A