1. Home
  2. Paloalto Networks
  3. PSE-Cortex Professional
  4. PSE-Cortex
  5. Palo Alto Networks System Engineer - Cortex Professional Questions and Answers

Pass the Paloalto Networks PSE-Cortex Professional PSE-Cortex Questions and answers with CertsForce

 Paloalto Networks Exams      Go to Exam Detail      Get Premium Access
Viewing page 4 out of 5 pages
Viewing questions 31-40 out of questions
Questions # 31:

Cortex XDR external data ingestion processes ingest data from which sources?

Options:
A.

windows event logs only

B.

syslogs only

C.

windows event logs, syslogs, and custom external sources

D.

windows event logs and syslogs only

Questions # 32:

What is used to display only file entries in a War Room?

Options:
A.

files from War Room CLI WW

B.

incident files section in layout builder

C.

files and attachments filters

D.

/files from War Room CLI

Questions # 33:

A customer is hesitant to directly connect their network to the Cortex platform due to compliance restrictions.

Which deployment method should the customer use to ensure secure connectivity between their network and the Cortex platform?

Options:
A.

Elasticsearch

B.

Broker VM

C.

Syslog collector

D.

Windows Event Collector

Questions # 34:

A Cortex XSOAR customer has a phishing use case in which a playbook has been implemented with one of the steps blocking a malicious URL found in an email reported by one of the users.

What would be the appropriate next step in the playbook?

Options:
A.

Email the CISO to advise that malicious email was found.

B.

Disable the user's email account.

C.

Email the user to confirm the reported email was phishing.

D.

Change the user's password.

Questions # 35:

Which resource can a customer use to ensure that the Cortex XDR agent will operate correctly on their CentOS 07 servers?

Options:
A.

Administrator Guide

B.

Compatibility Matrix

C.

Release Notes

D.

LIVE community

Questions # 36:

What is the difference between an exception and an exclusion?

Options:
A.

An exception is based on rules and exclusions are on alerts

B.

An exclusion is based on rules and exceptions are based on alerts.

C.

An exception does not exist

D.

An exclusion does not exist

Questions # 37:

Which Linux OS command will manually load Docker images onto the Cortex XSOAR server in an air-gapped environment?

Options:
A.

sudo repoquery -a --installed

B.

sudo demistoserver-x.x-xxxx.sh -- -tools=load

C.

sudo docker ps load

D.

sudo docker load -i YOUR_DOCKER_FILE.tar

Questions # 38:

What does the Cortex XSOAR "Saved by Dbot" widget calculate?

Options:
A.

amount saved in Dollars according to actions carried out by all users in Cortex XSOAR across all incidents

B.

amount saved in Dollars by using Cortex XSOAR instead of other products

C.

amount of time saved by each playbook task within an incident

D.

amount of time saved by Dbot's machine learning (ML) capabilities

Questions # 39:

How many use cases should a POC success criteria document include?

Options:
A.

only 1

B.

3 or more

C.

no more than 5

D.

no more than 2

Questions # 40:

Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on-demand malware scan (Choose two )

Options:
A.

Response > Action Center

B.

the local console

C.

Telnet

D.

Endpoint > Endpoint Management

Viewing page 4 out of 5 pages
Viewing questions 31-40 out of questions