New Year Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

  1. Home
  2. Paloalto Networks
  3. Security Operations
  4. XSOAR-Engineer
  5. Palo Alto Networks XSOAR Engineer Questions and Answers

Pass the Paloalto Networks Security Operations XSOAR-Engineer Questions and answers with CertsForce

 Paloalto Networks Exams      Go to Exam Detail      Get Premium Access
Viewing page 5 out of 7 pages
Viewing questions 41-50 out of questions
Questions # 41:

Which of the following does a XSOAR Admin need to create an integration with a third party cloud application?

Options:
A.

Marketplace access

B.

Application with API

C.

Private key/Public key integration

D.

Multitenant deployment

Expert Solution
Questions # 42:

Assuming an incident type configuration runs the associated playbook automatically, which pre-process rule action can preserve matching incidents without triggering the playbook?.

Options:
A.

Close.

B.

Update.

C.

Drop.

D.

Link.

Expert Solution
Questions # 43:

An engineer defined a dashboard which allows important metrics to be displayed. The engineer would like to make this dashboard the default dashboard.

How can it be accomplished?

Options:
A.

Default Dashboard can be defined by ‘Role’

B.

Use the server configuration key: default.dashboards

C.

Save the dashboard as a widget and apply it to all users

D.

Right click on the dashboard tab and ‘Set as Default’

Expert Solution
Questions # 44:

What are two primary uses of standard tasks? (Choose two.)

Options:
A.

To highlight different paths in a playbook

B.

To generate new widgets for a dashboard

C.

To create an incident or escalate an existing incident

D.

To automate tasks such as parsing a file or enriching indicators

Expert Solution
Questions # 45:

Which of the following is a prerequisite to editing out-of-the-box (OOTB) content?

Options:
A.

Download the content from the Marketplace.

B.

Go to Settings > About >Troubleshooting and set a flag to allow custom content.

C.

Register a user account with support.paloaltonetworks.com .

D.

Detach the content item you want to edit from the Marketplace.

Expert Solution
Questions # 46:

An analyst wants to run a script to remove usernames from an incident before the incident becomes active in XSOAR. How can this be achieved?

Options:
A.

Run an automation script in the Playground to remove usernames from the incident.

B.

Create a pre-processing rule that runs an automation script to remove usernames from the incident as it comes into XSOAR.

C.

Run an automation script on the XSOAR server to remove usernames from the incident.

D.

Create a playbook task to remove the usernames from the incident.

Expert Solution
Questions # 47:

After enriching a username using Active Directory, an engineer would like to send an email to the user’s manager. However, this functionality is not part of the command output. The engineer checks with raw- response=true and notices that the manager’s email is returned, but not saved in the context.

How can the engineer save the data so it will be accessible?

Options:
A.

Mark ignore output = true

B.

Use extend-context

C.

Use raw-response = save

D.

Mark ignore input = true

Expert Solution
Questions # 48:

Match the action with the most appropriate playbook task type.

Question # 48

Expert Solution
Questions # 49:

Match the appropriate action to the layout type.

Question # 49

Expert Solution
Questions # 50:

Management would like to get an incident report automatically following an incident’s closure. How would this be accomplished?

Options:
A.

Define a task in a playbook to generate an incident report before the closure occurs

B.

Manually create an ‘Incident Report’

C.

Configure post-processing using a script

D.

Create an ‘Incident Report’ from the Reports page

Expert Solution
Viewing page 5 out of 7 pages
Viewing questions 41-50 out of questions