• Home
  • Articles
  • A fully updated 2024 PSE-PrismaCloud Exam Dumps exam guide from training expert Lead2Passed [Q24-Q42]

A fully updated 2024 PSE-PrismaCloud Exam Dumps exam guide from training expert Lead2Passed [Q24-Q42]

Share

A fully updated 2024 PSE-PrismaCloud Exam Dumps exam guide from training expert Lead2Passed

Provides complete coverage of every objective on exam and exam preparation PSE-PrismaCloud

NEW QUESTION # 24
Which two resource types are included in the Prisma Cloud Enterprise licensing count? (Choose two.)

  • A. Elastic Compute Cloud (EC2) instances
  • B. CloudFront distributions
  • C. Security groups
  • D. Network Address Translation (NAT) gateways

Answer: A,B


NEW QUESTION # 25
A Prisma Cloud Administrator has been asked to create a custom policy which notifies the InfoSec team each time a configuration mange is made to a Security group.
Which type of Resource Query Language (RQL) query would be used in this policy?

  • A. audit from
  • B. event from
  • C. config from
  • D. network from

Answer: A


NEW QUESTION # 26
How can you use Prisma Public Cloud to identify Amazon EC2 instances that have been tagged as "Private?

  • A. Open the Asset Dashboard, filter on tags: and choose "Private."
  • B. Create an RQL config query to identify resources with the tag "Private."
  • C. Generate a CIS compliance report and review the "Asset Summary."
  • D. Create an RQL network query to identify traffic from resources tagged "Private."

Answer: D


NEW QUESTION # 27
can you create a custom compliance standard in Prisma Public Cloud?

  • A. Create compliance framework in a spreadsheet then import into Prisma Public Cloud.
  • B. From Compliance tab, clone a default framework and customize.
  • C. Generate a new Compliance Report.
  • D. From Compliance tab > Compliance Standards, click "Add New."

Answer: D

Explanation:
https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-compliance/create- a-custom-compliance-standard


NEW QUESTION # 28
When protecting against attempts to exploit client-side and server-side vulnerabilities, what is the Palo Alto Networks best practice when using NGFW VulnerabilityProtection Profiles?

  • A. Use the default Vulnerability Protection Profile to protect clients from all known critical, high, and medium-severity threats
  • B. Use the default Vulnerability Protection Profile to protect servers from all known critical, high, and medium-severity threats
  • C. Clone the predefined Strict Profile, with packet capture settings enabled
  • D. Clone the predefined Strict Profile, with packet capture settings disabled

Answer: C


NEW QUESTION # 29
Which three methods can provide application-level security for a web server instance on Amazon Web Services? (Choose three.)

  • A. VM-Series firewalls
  • B. Amazon Web Services WAF
  • C. Traps
  • D. Prisma SaaS
  • E. Security Groups

Answer: A,B,C


NEW QUESTION # 30
The Microsoft Azure virtual network gateway supports which two site-to-site connectivity options? (Choose two.)

  • A. ExpressRoute
  • B. IPsecVPN
  • C. Fast Connect
  • D. Direct Connect

Answer: A,B

Explanation:
Explanation
https://docs.microsoft.com/en-us/azure/vpn-gateway/vpn-gateway-howto-site-to-site-resource-manager-portal


NEW QUESTION # 31
Which Amazon Web Services security service can provide host vulnerability information to Prisma Public Cloud?

  • A. Amazon Web Services WAF
  • B. Shield
  • C. Inspector
  • D. GuardDuty

Answer: C


NEW QUESTION # 32
Palo Alto Networks recommends which two options for outbound HA design in Amazon Web Services using VM-Series NGFW? (Choose two.)

  • A. traditional active/standby HA on VM-Series
  • B. transit VPC and security VPC with VM-Series
  • C. iLB-as-next-hop
  • D. transit gateway and security VPC with VM-Series

Answer: A,B


NEW QUESTION # 33
In which two ways can Prisma Cloud Compute (PCC) edition be installed? (Choose two.)

  • A. self-contained hardware appliance
  • B. Cloud-hosted as part of a Prisma Cloud Enterprise tenant from Palo Alto Networks
  • C. as a stand-alone Windows application
  • D. self-managed in a customer's own container platform

Answer: B,D


NEW QUESTION # 34
Which statement is specific for Prisma Cloud when integrating into cloud environments?

  • A. An AutoFocus license is included in Prisma Cloud.
  • B. No agents or proxies are required.
  • C. For multi-cloud environment licenses are required for the number of Prisma Cloud instances.
  • D. Can be natively integrated into Prisma Access.

Answer: B


NEW QUESTION # 35
An administrator has deployed an AWS transit gateway and used multiple VPC spokes to segregate a multi-tier application. The administrator also created a security VPC with multiple VM-Series NGFWs in an active/active deployment model via ECMP using Amazon Web Services VPN-based attachments.
What must be configured on the firewall to avoid asymmetric routing?

  • A. source and destination address translation
  • B. port address translation
  • C. source address translation
  • D. destination address translation

Answer: B


NEW QUESTION # 36
An administrator deploys a VM-Series firewall into Amazon Web Services. Which attribute must be disabled on the data-plane elastic network interface for the instance to handle traffic that is not destined to its own IP address?

  • A. elastic ip address
  • B. tags
  • C. source/destination checking
  • D. security group

Answer: C

Explanation:
Explanation
https://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/de


NEW QUESTION # 37
A client has a sensitive internet-facing application server in Microsoft Azure and is concerned about resource exhaustion because of distributed denial-of-service attacks What can be configured on the VM-Series firewall to specifically protect this server against this type of attack?

  • A. QoS Profile to limit incoming requests
  • B. Custom threat signature
  • C. DoS Protection Profile with specific session counts
  • D. Zone Protection Profile

Answer: C


NEW QUESTION # 38
What are two examples of Amazon Web Services logging services? (Choose two.)

  • A. CloudWatch
  • B. CIoudTrail
  • C. CloudEvent
  • D. CloudLog

Answer: A,B


NEW QUESTION # 39
Which regulatory framework in Prisma Cloud measures compliance with European Union (EU) data privacy regulations in Amazon Web services (AWS) workloads?

  • A. General Data Protection Regulation (GDPR)
  • B. International Organization for Standardization (ISO) 27001
  • C. EU Data Protection Directive 95/46/EC
  • D. Payment Card Industry (PCI) Data Security Standard (DSS) 3.0

Answer: A


NEW QUESTION # 40
Based on the diagram, prioritize the order in which the Virtual Gateway evaluates the best route based on the deterministic B6P Path selection process.

Answer:

Explanation:


NEW QUESTION # 41
Which pattern syntax will add all images to a trusted images rule within a registry?

  • A. Acme.com/myrepo/allimages:*
  • B. Acme/*
  • C. Registry.acme.com/*
  • D. *.acme.com

Answer: B


NEW QUESTION # 42
......

Tested Material Used To PSE-PrismaCloud: https://www.lead2passed.com/Palo-Alto-Networks/PSE-PrismaCloud-practice-exam-dumps.html

Steps Necessary To Pass The PSE-PrismaCloud Exam: https://drive.google.com/open?id=1HQ41kZi5iX3sxjJNyJnp9CeUNOIKZJ1x

Related Articles

more
Palo Alto Networks PSE-PrismaCloud Certification Practice Exam