1. Home
  2. Discussions
  3. Paloalto Networks
  4. Palo Alto Certifications and Accreditations
  5. PCNSE Discussions
  6. PCNSE Exam Topic 4 Question 36 Discussion

Paloalto Networks Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0 PCNSE Question # 36 Topic 4 Discussion

 Paloalto Networks Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Paloalto Networks Palo Alto Networks Certified Security Engineer (PCNSE) PAN-OS 11.0 PCNSE Question # 36 Topic 4 Discussion

PCNSE Exam Topic 4 Question 36 Discussion:
Question #: 36
Topic #: 4

How can a firewall be set up to automatically block users as soon as they are found to exhibit malicious behavior via a threat log?
A.

Configure a dynamic address group for the addresses to be blocked with the tag "malicious." Add a Log Forwarding profile to the other policies, which adds the "malicious" tag to these addresses when logs are generated in the threat log. Under Device > User Identification > Trusted Source Address, add the condition "NOT malicious."

B.

Configure a dynamic user group for the users to be blocked with the tag "malicious." Add a Log Forwarding profile to the other policies, which adds the "malicious" tag to these users when logs are generated in the threat log. Create policies to block traffic from this user group.

C.

Configure the appropriate security profiles for Antivirus, Anti-Spyware, and Vulnerability Prevention, create signature policies for the relevant signatures and/or severities. Under the "Actions" tab in "Signature Policies," select "block-user."

D.

N/A

Get Premium PCNSE Questions
Actual exam question for Paloalto Networks PCNSE exam by Jett1860 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next