PCNSA
Latest uploads at PCNSA. Looking for notes at PCNSA? We have lots of notes, study guides and study notes available for your school.
-
786
- 0
-
51
All courses for PCNSA
-
PCNSA 786
Latest content PCNSA
Which type of administrator account cannot be used to authenticate user traffic flowing through the 
firewall's data plane? - SAML user 
Starting with PAN-OS version 9.1 which new type of object is supported for use within the User field of a 
Security policy rule? - Dynamic user group 
Which link in the web interface enables a security administrator to view the Security policy rules that 
match new application signatures? - Review Apps 
Which type of firewall configuration contains in-progress...
- Exam (elaborations)
- • 2 pages's •
-
PCNSA•PCNSA
The Palo Alto Networks Security Operating Platform is designed for which three 
purposes? (Choose three.) 
A. consume innovations quickly 
B. ensure compliance 
C. focus on what matters 
D. prevent successful cyberattacks - A. consume innovations quickly 
D. prevent successful cyberattacks 
Which item is not one of the six primary components of the Palo Alto Networks 
Security Operating Platform? 
A. Applications (Palo Alto Networks apps, third‐party apps, customer apps) 
B. Cloud‐Delivered ...
- Exam (elaborations)
- • 6 pages's •
-
PCNSA•PCNSA
Q1. Which two statements are true about a Role Based Admin Role Profile role? (Choose two.) - It 
can be used for CLI commands. 
It can be used for XML API. 
Q2. The management console supports which two authentication types? (Choose two.) - RADIUS 
TACACS+ 
Q3. Which two Dynamic Admin Role types are available on the PAN-OS software? (Choose two.) - 
superuser 
device administrator (read-only) 
Q4. Which type of profile does an authentication sequence include? - Authentication 
Q5. An Authentic...
- Exam (elaborations)
- • 8 pages's •
-
PCNSA•PCNSA
A client downloads a malicious file from the internet. The Palo Alto firewall has a valid WildFire 
subscription. The Security policy rule shown above matches the client HTTP session: Which three actions 
take place when the firewall's Content-ID engine detects a virus in the file and the decoder action is set 
to "block"? (Choose three.) - A threat log entry is generated. 
The file download is terminated. 
The client receives a block page. 
A company has a pair of PA-3050s running PAN-OS 6.0...
- Exam (elaborations)
- • 10 pages's •
-
PCNSA•PCNSA
What is Palo Alto's 3 data processing feature on its Data Plane? - Signature matching, Security 
Processing and Network Processing 
What are the 2 planes of PAN-FW? - Control (Management) Plane and Data plane 
What is the principle of Zero Trust model? - Never trust, always verify 
What visibility does a Zero Trust network provides? - Both North-South and East-West traffic 
(Lateral and Horizontal) 
What is Zero Trust 3 main components - All resources are accessed in a secure manner regardless ...
- Exam (elaborations)
- • 35 pages's •
-
PCNSA•PCNSA
What is the Palo Alto Networks Certified Network Security Administrator (PCNSA)? - The Palo Alto 
Networks Certified Network Security Administrator (PCNSA) is a new customer targeted certification, 
created to help customers on their learning journey and the ultimate road to Palo Alto Networks 
Certified Network Security Engineer (PCNSE). The target audience for the PCNSA is customers who have 
taken the Firewall 8.1 Essentials: Configuration and Management (EDU-210 or EDU-110) courses. A 
certi...
- Exam (elaborations)
- • 3 pages's •
-
PCNSA•PCNSA
PCNSA 
Which two actions are available for antivirus security profiles? (Choose two.) 
A. continue 
B. allow 
C. block IP 
D. alert - B. allow 
D. alert 
Which two HTTP Header Logging options are within a URL filtering profile? (Choose two.) 
A. User‐Agent 
B. Safe Search 
C. URL redirection 
D. X‐Forward‐For - A. User‐Agent 
D. X‐Forward‐For 
What are the two components of Denial‐of‐Service Protection? (Choose two.) 
A. zone protection profile 
B. DoS protection profile and poli...
- Exam (elaborations)
- • 39 pages's •
-
PCNSA•PCNSA
security zone - group networks that contain particular types of traffic that are contained within 
defined security classifications 
Intrazone traffic - allows traffic to flow between interfaces that exist in the same zone 
Interzone traffic - denies traffic from flowing between interfaces that exist in different zones 
Security policy rules - are applied to zones (not interfaces) to allow or deny traffic, apply QoS, 
perform NAT, apply security profiles, or set logging parameters. 
primary zone...
- Exam (elaborations)
- • 8 pages's •
-
PCNSA•PCNSA
Which Palo Alto Networks firewall security platform provides network security for mobile endpoints by 
inspecting traffic deployment as internet gateways? - Global Protect 
Which statement is true regarding a Prevention Posture Assessment? - It provides a set of 
questionnaires that help uncover security risk prevention gaps across all areas of network and security 
architecture. 
Which fiver Zero Trust concepts does a Palo Alto Networks firewall apply to achieve an integrated 
approach to preve...
- Exam (elaborations)
- • 3 pages's •
-
PCNSA•PCNSA
Palo Alto Networks Security Operating Platform Components - Network Security 
Advanced Endpoint Protection 
Cloud Security 
Cloud-Delivered Security Services 
Application Framework and Logging Service 
Palo Alto Networks Apps, Third-Party Apps and Customer Apps 
Next Gen Firewall Availability - Physical appliances 
Virtualized appliances 
Cloud-delivered services/GlobalProtect 
Detection - Detect known and unknown attacks 
Attacks in encrypted traffic 
Use intelligence from customer deployments ...
- Exam (elaborations)
- • 2 pages's •
-
PCNSA•PCNSA