Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
MuleSoft
Okta
Oracle
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. Palo Alto Networks
  3. PCNSA

Palo Alto Networks PCNSA Exam (page: 6)
Palo Alto Networks Certified Network Security Administrator
Updated on: 01-Sep-2025

Viewing Page 6 of 79
PCNSA PDF 420 Questions

At which stage of the Cyber-Attack Lifecycle would the attacker attach an infected PDF file to an email?

  1. Delivery
  2. Reconnaissance
  3. Command and Control
  4. Exploitation

Answer(s): D



Identify the correct order to configure the PAN-OS integrated USER-ID agent.

3. add the service account to monitor the server(s)
2. define the address of the servers to be monitored on the firewall
4. commit the configuration, and verify agent connection status
1. create a service account on the Domain Controller with sufficient permissions to execute the User- ID agent

  1. 2-3-4-1
  2. 1-4-3-2
  3. 3-1-2-4
  4. 1-3-2-4

Answer(s): D



Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.
Complete the security policy to ensure only Telnet is allowed.
Security Policy: Source Zone: Internal to DMZ Zone __________services `Application defaults`, and action = Allow

  1. Destination IP: 192.168.1.123/24
  2. Application = "Telnet"
  3. Log Forwarding
  4. USER-ID = "Allow users in Trusted"

Answer(s): B



Based on the security policy rules shown, ssh will be allowed on which port?

  1. 80
  2. 53
  3. 22
  4. 23

Answer(s): C



Which license must an Administrator acquire prior to downloading Antivirus Updates for use with the firewall?

  1. Threat Prevention
  2. WildFire
  3. Antivirus
  4. URL Filtering

Answer(s): A


Reference:

https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/getting-started/install-content-and-software-updates.html



Viewing Page 6 of 79



Share your comments for Palo Alto Networks PCNSA exam with other users:

Abdullah 9/29/2023 2:06:00 AM

good morning
Anonymous


ethiopia 8/2/2023 2:18:00 AM

seems good..
ETHIOPIA


A\MAM 6/27/2023 5:17:00 PM

q-6 ans-b correct. https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-cli-quick-start/use-the-cli/commit-configuration-changes
UNITED STATES