• ホーム
  • ブログ
  • [2023年更新]PSE-SASE試験問題集でテストエンジン練習テスト問題 [Q26-Q49]

[2023年更新]PSE-SASE試験問題集でテストエンジン練習テスト問題 [Q26-Q49]

Share

[2023年更新]PSE-SASE試験問題集でテストエンジン練習テスト問題

合格できるPSE-SASE試験[2023年06月15日]最新67問題

質問 # 26
The Cortex Data Lake sizing calculator for Prisma Access requires which three values as inputs? (Choose three.)

  • A. cloud-managed or Panorama-managed deployment
  • B. number of log-forwarding destinations
  • C. retention period for the logs to be stored
  • D. throughput of remote networks purchased
  • E. number of mobile users purchased

正解:C、D、E


質問 # 27
Which product draws on data collected through PAN-OS device telemetry to provide an overview of the health of an organization's next-generation firewall (NGFW) deployment and identify areas for improvement?

  • A. DNS Security
  • B. Device Insights
  • C. security information and event management (SIEM)
  • D. Cloud Identity Engine (CIE)

正解:B


質問 # 28
Which secure access service edge (SASE) networking component inspects web-based protocols and traffic to securely connect users to applications?

  • A. proxy
  • B. SD-WAN
  • C. cloud access security broker (CASB)
  • D. secure web gateway (SWG)

正解:D


質問 # 29
Which statement applies to Prisma Access licensing?

  • A. For remote network and Clean Pipe deployments, a unit is defined as 1 Mbps of bandwidth.
  • B. It is a perpetual license required to enable support for multiple virtual systems on PA-3200 Series firewalls.
  • C. It provides cloud-based, centralized log storage and aggregation.
  • D. Internet of Things (IOT) Security is included with each license.

正解:A


質問 # 30
What are two benefits provided to an organization using a secure web gateway (SWG)? (Choose two.)

  • A. Security policies for making internet access safer are enforced.
  • B. An encrypted challenge-response mechanism obtains user credentials from the browser.
  • C. VPNs remain connected, reducing user risk exposure.
  • D. Access to inappropriate websites or content is blocked based on acceptable use policies.

正解:A、D


質問 # 31
Which elements of Autonomous Digital Experience Management (ADEM) help provide end-to-end visibility of everything in an organization's environment?

  • A. data collected from endpoint devices, synthetic monitoring tests, and real-time traffic
  • B. scanning of all traffic, ports, and protocols
  • C. integrated threat intelligence management, automated distribution to enforcement points at scale, full ticket mirroring
  • D. alerts, artifacts, and MITRE tactics

正解:C


質問 # 32
What is a key benefit of CloudBlades?

  • A. automation of UI workflow without any code development and deployment of Prisma SD-WAN ION devices
  • B. utilization of near real-time analysis to detect previously unseen, targeted malware and advanced persistent threats
  • C. identification of port-based rules so they can be converted to application-based rules without compromising application availability
  • D. configuration of the authentication source once instead of for each authentication method used

正解:A


質問 # 33
In which step of the Five-Step Methodology for implementing the Zero Trust model is the Kipling Method relevant?

  • A. Step 2: Map the transaction flows
  • B. Step 5: Monitor and maintain the network
  • C. Step 3: Architect a Zero Trust network
  • D. Step 4: Create the Zero Trust policy

正解:D


質問 # 34
What is an advantage of the Palo Alto Networks cloud-based security infrastructure?

  • A. It allows for the elimination of data centers within five years of implementation.
  • B. It increases the footprint of the security solution.
  • C. It backhauls traffic to the corporate network.
  • D. It provides comprehensive, scalable cloud security with flexible licensing options.

正解:D


質問 # 35
What is a benefit of the Palo Alto Networks secure access service edge (SASE) solution's ability to provide insight into SD-WAN and network security metrics while highlighting critical issues across all managed tenants?

  • A. It simplifies workflows and instantly automates common use cases with hundreds of prebuilt playbooks.
  • B. It rearchitects the way signatures are delivered, performing updates and streaming them to the firewall within seconds after the analysis is done.
  • C. It helps managed service providers (MSPs) accelerate troubleshooting and meet service level agreements (SLAs) for all their customers.
  • D. It helps protect inbound, outbound, and east-west traffic between container workload types in Kubernetes environments without slowing development speed.

正解:C


質問 # 36
Cloud-delivered App-ID provides specific identification of which two applications? (Choose two.)

  • A. private
  • B. custom
  • C. unknown-tcp
  • D. web-browsing

正解:C、D


質問 # 37
How does SaaS Security Inline provide a consistent management experience?

  • A. uses advanced predictive analysis and machine learning (ML)
  • B. automatically forwards samples for WildFire analysis
  • C. integrates with existing security
  • D. user credentials required before accessing the resource

正解:C


質問 # 38
How does Autonomous Digital Experience Management (ADEM) improve user experience?

  • A. The root cause of any alert can be viewed with a single click, allowing users to swiftly stop attacks across the environment.
  • B. It applies in-depth hunting and forensics knowledge to identify and contain threats before they become a breach.
  • C. The virtual appliance receives and stores firewall logs without using a local Log Collector, simplifying required steps users must take.
  • D. Working from home or branch offices, all users get the benefit of a digital experience management solution without the complexity of installing additional software and hardware.

正解:D


質問 # 39
A customer currently uses a third-party proxy solution for client endpoints and would like to migrate to Prisma Access to secure mobile user internet-bound traffic.
Which recommendation should the Systems Engineer make to this customer?

  • A. With the explicit proxy license add-on, set up GlobalProtect.
  • B. With the mobile user license, set up a corporate access node.
  • C. With the explicit proxy license, set up a service connection.
  • D. With the mobile user license, set up explicit proxy.

正解:D


質問 # 40
What is a benefit of a cloud-based secure access service edge (SASE) infrastructure over a Zero Trust Network Access (ZTNA) product based on a software-defined perimeter (SDP) model?

  • A. Virtual private network (VPN) services are used for remote access to the internal data center, but not the cloud.
  • B. Complexity of connecting to a gateway is increased, providing additional protection.
  • C. Users, devices, and apps are identified no matter where they connect from.
  • D. Connection to physical SD-WAN hubs in ther locations provides increased interconnectivity between branch offices.

正解:C


質問 # 41
Which two prerequisites must an environment meet to onboard Prisma Access mobile users? (Choose two.)

  • A. BGP must be configured so that service connection networks can be advertised to the mobile gateways.
  • B. Mapping of trust and untrust zones must be configured.
  • C. Zoning must be configured to require a user ID for the mobile users trust zone.
  • D. Mobile user subnet and DNS portal name must be configured.

正解:C、D


質問 # 42
What happens when SaaS Security sees a new or unknown SaaS application?

  • A. It forwards the application for WildFire analysis.
  • B. It generates alerts regarding changes in performance.
  • C. It uses machine learning (ML) to classify the application.
  • D. It extends the branch perimeter to the closest node with high performance.

正解:A


質問 # 43
Which action protects against port scans from the internet?

  • A. Apply App-ID Security policy rules to block traffic sourcing from the untrust zone.
  • B. Apply a Zone Protection profile on the zone of the ingress interface.
  • C. Assign Security profiles to Security policy rules for traffic sourcing from the untrust zone.
  • D. Assign an Interface Management profile to the zone of the ingress surface.

正解:B


質問 # 44
Which App Response Time metric is the measure of network latency?

  • A. Server Response Time (SRT)
  • B. UDP Response Time (UDP-TRT)
  • C. Network Transfer Time (NTTn)
  • D. Round Trip Time (RTT)

正解:D


質問 # 45
How does SaaS Security Inline help prevent the data security risks of unsanctioned security-as-a-service (SaaS) application usage on a network?

  • A. It prevents credential theft by controlling sites to which users can submit their corporate credentials.
  • B. It offers risk scoring, analytics, reporting, and Security policy rule authoring.
  • C. It provides built-in external dynamic lists (EDLs) that secure the network against malicious hosts.
  • D. It provides mobility solutions and/or large-scale virtual private network (VPN) capabilities.

正解:C


質問 # 46
Which type of access allows unmanaged endpoints to access secured on-premises applications?

  • A. GlobalProtect VPN for remote access
  • B. manual external gateway
  • C. Prisma Access Clientless VPN
  • D. secure web gateway (SWG)

正解:C


質問 # 47
How does the secure access service edge (SASE) security model provide cost savings to organizations?

  • A. The single platform reduces costs compared to buying and managing multiple point products.
  • B. The compact size of the components involved reduces overhead costs, as less physical space is needed.
  • C. The increased complexity of the model over previous products reduces IT team staffing costs.
  • D. The content inspection integration allows third-party assessment, which reduces the cost of contract services.

正解:D


質問 # 48
What is a differentiator between the Palo Alto Networks secure access service edge (SASE) solution and competitor solutions?

  • A. ticketing systems
  • B. inspections
  • C. playbooks
  • D. path analysis

正解:D


質問 # 49
......

Palo Alto Networks PSE-SASEリアルな2023年最新の知能問題集模擬試験問題集:https://www.passtest.jp/Palo-Alto-Networks/PSE-SASE-shiken.html

Palo Alto Networks PSE-SASEリアルな問題と100%カバーリアルな試験問題:https://drive.google.com/open?id=1clZgUR9UUdrWia6WVDD-suksmvpXTjYU

関するブログ

もっと
PSE-SASE 無料問題集