PCNSE Practice Test

An administrator has created an SSL Decryption policy rule that decrypts SSL sessions on any port. Which log entry can the administrator use to verify that sessions are being decrypted?

A.

In the details of the Traffic log entries

B.

Decryption log

C.

Data Filtering log

D.

In the details of the Threat log entries

Which two benefits come from assigning a Decryption Profile to a Decryption policy rule with a “No Decrypt” action? (Choose two.)

A.

Block sessions with expired certificates

B.

Block sessions with client authentication

C.

Block sessions with unsupported cipher suites

D.

Block sessions with untrusted issuers

E.

Block credential phishing

Which two methods can be used to verify firewall connectivity to AutoFocus? (Choose two.)

A.

Verify AutoFocus status using CLI.

B.

Check the WebUI Dashboard AutoFocus widget.

C.

Check for WildFire forwarding logs.

D.

Check the license

E.

Verify AutoFocus is enabled below Device Management tab.

An administrator is using Panorama and multiple Palo Alto Networks NGFWs. After upgrading all devices to the latest PAN-OS® software, the administrator enables log forwarding from the firewalls to PanoramA. Pre-existing logs from the firewalls are not appearing in PanoramA.
Which action would enable the firewalls to send their pre-existing logs to Panorama?

A.

Use the import option to pull logs into PanoramA.

B.

A CLI command will forward the pre-existing logs to PanoramA.

C.

Use the ACC to consolidate pre-existing logs.

D.

The log database will need to exported form the firewalls and manually imported into PanoramA.

Which two features does PAN-OS® software use to identify applications? (Choose two)

A.

port number

B.

session number

C.

transaction characteristics

D.

application layer payload