1. Home
  2. Paloalto Networks
  3. Network Security Administrator
  4. PCNSA
  5. Palo Alto Networks Certified Network Security Administrator (PAN-OS 10.0) Questions and Answers

Pass the Paloalto Networks Network Security Administrator PCNSA Questions and answers with CertsForce

 Paloalto Networks Exams      Go to Exam Detail      Get Premium Access
Viewing page 4 out of 11 pages
Viewing questions 31-40 out of questions
Questions # 31:

Which interface type is part of a Layer 3 zone with a Palo Alto Networks firewall?

Options:
A.

Management

B.

High Availability

C.

Aggregate

D.

Aggregation

Expert Solution
Questions # 32:

Which two App-ID applications will need to be allowed to use Facebook-chat? (Choose two.)

Options:
A.

facebook

B.

facebook-chat

C.

facebook-base

D.

facebook-email

Expert Solution
Questions # 33:

You receive notification about a new malware that infects hosts An infection results in the infected host attempting to contact a command-and-control server Which Security Profile when applied to outbound Security policy rules detects and prevents this threat from establishing a command-and-control connection?

Options:
A.

Antivirus Profile

B.

Data Filtering Profile

C.

Vulnerability Protection Profile

D.

Anti-Spyware Profile

Expert Solution
Questions # 34:

Which tab would an administrator click to create an address object?

Options:
A.

Device

B.

Policies

C.

Monitor

D.

Objects

Expert Solution
Questions # 35:

Arrange the correct order that the URL classifications are processed within the system.

Question # 35

Expert Solution
Questions # 36:

Which administrator type provides more granular options to determine what the administrator can view and modify when creating an administrator account?

Options:
A.

Root

B.

Dynamic

C.

Role-based

D.

Superuser

Expert Solution
Questions # 37:

Which statement is true regarding a Prevention Posture Assessment?

Options:
A.

The Security Policy Adoption Heatmap component filters the information by device groups, serial numbers, zones, areas of architecture, and other categories

B.

It provides a set of questionnaires that help uncover security risk prevention gaps across all areas of network and security architecture

C.

It provides a percentage of adoption for each assessment area

D.

It performs over 200 security checks on Panorama/firewall for the assessment

Expert Solution
Questions # 38:

Which type of security rule will match traffic between the Inside zone and Outside zone, within the Inside zone, and within the Outside zone?

Options:
A.

global

B.

intrazone

C.

interzone

D.

universal

Expert Solution
Questions # 39:

Which User-ID mapping method should be used for an environment with clients that do not authenticate to Windows Active Directory?

Options:
A.

Windows session monitoring via a domain controller

B.

passive server monitoring using the Windows-based agent

C.

Captive Portal

D.

passive server monitoring using a PAN-OS integrated User-ID agent

Expert Solution
Questions # 40:

Based on the screenshot what is the purpose of the group in User labelled ''it"?

Question # 40

Options:
A.

Allows users to access IT applications on all ports

B.

Allows users in group "DMZ" lo access IT applications

C.

Allows "any" users to access servers in the DMZ zone

D.

Allows users in group "it" to access IT applications

Expert Solution
Viewing page 4 out of 11 pages
Viewing questions 31-40 out of questions