All Obstacles During PSE-PrismaCloud Exam Preparation with PSE-PrismaCloud Real Test Questions [Q67-Q85]

Share

All Obstacles During PSE-PrismaCloud Exam Preparation with PSE-PrismaCloud Real Test Questions

Fully Updated Free Actual Palo Alto Networks PSE-PrismaCloud Exam Questions

NEW QUESTION # 67
Which option is true about VM-Series NGFW templates available from the Palo Alto Networks GitHub repository?

  • A. Palo Alto Networks provides full support if a valid support license is in place.
  • B. Unless otherwise noted, these templates are released under an as-is. best effort support policy.
  • C. Support for the templates is available through Professional Services from Palo Alto Networks.
  • D. The author of the template provides full support as long as the PAN-OS version specific to the template is supported.

Answer: B


NEW QUESTION # 68
Which three features are not supported by VM-Series NGFWs on Azure Stack? (Choose three.)

  • A. Azure Security Center
  • B. ARM Template
  • C. Bootstrapping
  • D. Resource Group
  • E. Azure Application Insight

Answer: B,C,E


NEW QUESTION # 69
Which pillar of the Prisma Cloud platform provides support for both public and private clouds as well as flexible agentless scanning and agent-based protection?

  • A. Cloud Security Posture Management
  • B. Cloud Workload Protection (CWP)
  • C. Cloud Network Security
  • D. Cloud Identity Security

Answer: B


NEW QUESTION # 70
Which Resource Query Language (RQL) query returns a list of all Azure SQL Databases that have transparent data encryption turned in?

  • A. Config from cloud.resource where api.name = „azure-sql-db-list" and json.—rule = trasparentDataEncryption is false
  • B. Config from cloud.resource where api.name = „azure-sql-db-list" and json.—rule = trasparentDataEncryption = true
  • C. Config from cloud.resource where api.name = „azure-sql-db-list" and json.—rule = trasparentDataEncryption is on
  • D. Config from cloud.resource where api.name = „azure-sql-db-list" and json.—rule = trasparentDataEncryption is true

Answer: D


NEW QUESTION # 71
The customer has an Amazon Web Services Elastic Computing Cloud that provides a service to the internet directly and needs to secure that cloud with a VM-Series NGFW.
Which component handles address translation?

  • A. The servers and VM-Series NGFW have publicly accessible IP addresses for management purposes.
  • B. The server VMs and the VM-Series NGFW have private use only (RFC 1918) IPs. Amazons cloud infrastructure translates those addresses to publicly accessible IP addresses
  • C. The server VMs have private use only (RFC 1918) IPs. The VM-Series NGFW translates those addresses to publicly accessible IP addresses.
  • D. The server VMs have private use only (RFC 1918) IPs. Amazon's cloud infrastructure translates those addresses to publicly accessible IP addresses. The VM-Series NGFW has publicly accessible IP addresses.

Answer: B


NEW QUESTION # 72
Which option is defined by the creation and change of public cloud services managed in a repeatable and predictable fashion?

  • A. infrastructure as a service
  • B. infrastructure as code
  • C. platform as a service
  • D. software as code

Answer: A


NEW QUESTION # 73
What are two ways to initially deploy a VM-Series NGFW in Microsoft Azure? (Choose two.)

  • A. through Iron Skillets in the GitHub Repository
  • B. through Solution Templates in the Azure Marketplace
  • C. through Expedition in the Customer Success Portal
  • D. through ARM Templates in the GitHub Repository

Answer: B,D


NEW QUESTION # 74
A customer CSO has asked you to demonstrate how to identify all "Amazon RDS" resources deployed and the region that they are deployed in. What are two ways that Prisma Public Cloud can show the relevant information?(Choose two.)

  • A. Generate a compliance report from the Compliance dashboard
  • B. Open the Asset dashboard, filter on Amazon Web Services, and click "Amazon RDS" resources.
  • C. Configure an Inventory report from the "Alerts" tab
  • D. Write an RQL query from the "Investigate" tab.

Answer: A,B


NEW QUESTION # 75
Amazon Web Services WAF can be enabled on which two resources?(Choose two.)

  • A. AWS NLB
  • B. AWS ALB
  • C. AWS CDN
  • D. AWS NAT Gateway

Answer: C,D


NEW QUESTION # 76
Which two cloud-native providers are supported by Prisma Cloud? (Choose two.)

  • A. IBM Cloud
  • B. Oracle Cloud
  • C. Azure
  • D. DigitalOcean

Answer: B,C


NEW QUESTION # 77
Which Resource Query Language (RQL) query returns a list of all TERMINATED Google Compute Engine (GCE) instances?

  • A. Config from.cloud.resource where api.name = „gcloud-compute-instance-list" and json.rule = TERMINATED
  • B. Config from.cloud.resource where api.name = „gcloud-compute-instance-list" and json.rule = status contains TERMINATED
  • C. Config from.cloud.resource where api.name = „gcloud-compute-instance-list" and json.rule = is TERMINATED
  • D. Config from.cloud.resource where api.name = „gcloud-compute-instance-list" and json.rule = status == TERMINATED

Answer: B


NEW QUESTION # 78
Based on the diagram, how many routes will the virtual gateway advertise to the on-premises NGFW over the Amazon Web Services Direct Connect link?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C


NEW QUESTION # 79
What are the asset severity levels within Prisma Cloud asset inventory?

  • A. Low, Medium, High, Severe, and Critical
  • B. Low, Medium, and High
  • C. Low, Medium, High, and Critical
  • D. Informational, Low, Medium, and High

Answer: C


NEW QUESTION # 80
Which three requirements are needed to register a PAYG VM-Series NGFW at the Palo Alto Networks Customer Support website? (Choose three.)

  • A. UUID
  • B. CPU ID
  • C. Auth Code
  • D. Serial Number
  • E. License Key

Answer: A,B,D


NEW QUESTION # 81
How does a customer that has deployed a VM-Series NGFW on Microsoft Azure using a BYOL license change to a PAYG license structure?

  • A. go to Palo Alto Networks Support website to change the BYOL license to a PAYG license
  • B. purchase a new PAYG license for Microsoft Azure from Palo Alto Networks
  • C. purchase a new PAYG license from a reseller
  • D. launch a new VM using the PAYG image

Answer: D


NEW QUESTION # 82
Which two template formats are supported by the Prisma Cloud infrastructure as code (laC) scan service?
(Choose two.)

  • A. YAML
  • B. JSON
  • C. ARM
  • D. XML

Answer: A,C


NEW QUESTION # 83
What occurs with the command twistcli when scanning images?

  • A. If option "--address" is unspecified, all images are scanned.
  • B. Option "--output-file" cannot be used in conjunction with option "--details."
  • C. If options are listed after the image name; they will be ignored.
  • D. If option "--user" is used, it is mandatory to use option "--password.

Answer: D


NEW QUESTION # 84
An administrator deploys a VM-Series firewall into Amazon Web Services. Which attribute must be disabled on the data-plane elastic network interface for the instance to handle traffic that is not destined to its own IP address?

  • A. source/destination checking
  • B. elastic ip address
  • C. security group
  • D. tags

Answer: A

Explanation:
Explanation
https://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/de


NEW QUESTION # 85
......

Validate your PSE-PrismaCloud Exam Preparation with PSE-PrismaCloud Practice Test: https://validdumps.free4torrent.com/PSE-PrismaCloud-valid-dumps-torrent.html