Palo Alto Networks System Engineer - Prisma Cloud Professional PSE-Prisma-Pro-24 Dumps in PDF

Free Palo Alto Networks PSE-Prisma-Pro-24 Real Questions (page: 1)

Which configuration needs to be done to perform user entity behavior analysis with Prisma Public Cloud?

  1. Create alert rules.
  2. Whitelist IP addresses.
  3. Configure User-ID.
  4. Define enterprise settings.

Answer(s): D



Which two cloud providers support Load Balancers as next hop configurations for outbound connections? (Choose two.)

  1. Google Cloud Platform
  2. Microsoft Azure
  3. Oracle Cloud
  4. Amazon Web Services

Answer(s): A,B



DRAG DROP (Drag and Drop is not supported)
Match the query type with its corresponding search

  1. See Explanation for the Answer.

Answer(s): A

Explanation:

network where,
event where,
config where



Which RQL string returns a list of all Azure virtual machines that are not currently running?

  1. config where api.name = 'azure-vm-list' AND json.rule = powerState = "off'
  2. config where api.name = 'azure-vm-list' AND json.rule = powerState does not contain "running"
  3. config where api.name = 'azure-vm-list' AND json.rule = powerState = "running"
  4. config where api.name = 'azure-vm-list' AND json.rule = powerState contains "running"

Answer(s): B



Palo Alto Networks recommends which two options for outbound HA design in Amazon Web Services using VM-Series NGFW? (Choose two.)

  1. iLB-as-next-hop
  2. transit gateway and security VPC with VM-Series
  3. traditional active/standby HA on VM-Series
  4. transit VPC and security VPC with VM-Series

Answer(s): B,C



Which three anomaly policies are predefined in Prisma Public Cloud? (Choose three.)

  1. Excessive login failures
  2. Unusual user activity
  3. Denial-of-service activity
  4. Account hijacking attempts
  5. Suspicious file activity

Answer(s): A,B,D

Explanation:

Account hijacking attempts
--Detect potential account hijacking attempts discovered by identifying unusual login activities. These can happen if there are concurrent login attempts made in short duration from two different geographic locations, which is impossible time travel
, or login from a previously unknown browser, operating system, or location.
Excessive login failures
--Detect potential account hijacking attempts discovered by identifying brute force login attempts. Excessive login failure attempts are evaluated dynamically based on the models observed with continuous learning.

Unusual user activity
--Discover insider threat and an account compromise using advanced data science. The Prisma Cloud machine learning algorithm profiles a user's activities on the console, as well as the usage of access keys based on the location and the type of cloud resources. https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud- policies/anomaly-policies.html



An administrator deploys a VM-Series firewall into Amazon Web Services.
Which attribute must be disabled on the data-plane elastic network interface for the instance to handle traffic that is not destined to its own IP address?

  1. security group
  2. tags
  3. elastic ip address
  4. source/destination checking

Answer(s): D

Explanation:

https://docs.paloaltonetworks.com/vm-series/8-1/vm-series-deployment/set-up-the-vm-series- firewall-on-aws/deploy-the-vm-series-firewall-on-aws/launch-the-vm-series-firewall-on-aws.html



Which Google Cloud Platform project shares its VPC networks with other projects?

  1. Service project
  2. Host project
  3. Admin project
  4. Subscribing project

Answer(s): B

Explanation:

Create a shared VPC using the Trust VPC created when you deployed the firewall template. Set up a shared VPC for the host (firewall) project:
gcloud compute shared-vpc enable HOST_PROJECT_ID

https://docs.paloaltonetworks.com/vm-series/9-1/vm-series-deployment/set-up-the-vm-series- firewall-on-google-cloud-platform/autoscaling-on-google-cloud-platform/deploy-autoscaling-on- google-cloud.html



Share your comments for Palo Alto Networks PSE-Prisma-Pro-24 exam with other users:

B
bot
7/26/2023 6:45:00 PM

more comments here

K
Kaleemullah
12/31/2023 1:35:00 AM

great support to appear for exams

B
Bsmaind
8/20/2023 9:26:00 AM

useful dumps

B
Blessious Phiri
8/13/2023 8:37:00 AM

making progress

N
Nabla
9/17/2023 10:20:00 AM

q31 answer should be d i think

V
vladputin
7/20/2023 5:00:00 AM

is this real?

N
Nick W
9/29/2023 7:32:00 AM

q10: c and f are also true. q11: this is outdated. you no longer need ownership on a pipe to operate it

N
Naveed
8/28/2023 2:48:00 AM

good questions with simple explanation

C
cert
9/24/2023 4:53:00 PM

admin guide (windows) respond to malicious causality chains. when the cortex xdr agent identifies a remote network connection that attempts to perform malicious activity—such as encrypting endpoint files—the agent can automatically block the ip address to close all existing communication and block new connections from this ip address to the endpoint. when cortex xdrblocks an ip address per endpoint, that address remains blocked throughout all agent profiles and policies, including any host-firewall policy rules. you can view the list of all blocked ip addresses per endpoint from the action center, as well as unblock them to re-enable communication as appropriate. this module is supported with cortex xdr agent 7.3.0 and later. select the action mode to take when the cortex xdr agent detects remote malicious causality chains: enabled (default)—terminate connection and block ip address of the remote connection. disabled—do not block remote ip addresses. to allow specific and known s

Y
Yves
8/29/2023 8:46:00 PM

very inciting

M
Miguel
10/16/2023 11:18:00 AM

question 5, it seems a instead of d, because: - care plan = case - patient = person account - product = product2;

B
Byset
9/25/2023 12:49:00 AM

it look like real one

D
Debabrata Das
8/28/2023 8:42:00 AM

i am taking oracle fcc certification test next two days, pls share question dumps

N
nITA KALE
8/22/2023 1:57:00 AM

i need dumps

C
CV
9/9/2023 1:54:00 PM

its time to comptia sec+

S
SkepticReader
8/1/2023 8:51:00 AM

question 35 has an answer for a different question. i believe the answer is "a" because it shut off the firewall. "0" in registry data means that its false (aka off).

N
Nabin
10/16/2023 4:58:00 AM

helpful content

B
Blessious Phiri
8/15/2023 3:19:00 PM

oracle 19c is complex db

S
Sreenivas
10/24/2023 12:59:00 AM

helpful for practice

L
Liz
9/11/2022 11:27:00 PM

support team is fast and deeply knowledgeable. i appreciate that a lot.

N
Namrata
7/15/2023 2:22:00 AM

helpful questions

L
lipsa
11/8/2023 12:54:00 PM

thanks for question

E
Eli
6/18/2023 11:27:00 PM

the software is provided for free so this is a big change. all other sites are charging for that. also that fucking examtopic site that says free is not free at all. you are hit with a pay-wall.

O
open2exam
10/29/2023 1:14:00 PM

i need exam questions nca 6.5 any help please ?

G
Gerald
9/11/2023 12:22:00 PM

just took the comptia cybersecurity analyst (cysa+) - wished id seeing this before my exam

R
ryo
9/10/2023 2:27:00 PM

very helpful

J
Jamshed
6/20/2023 4:32:00 AM

i need this exam

R
Roberto Capra
6/14/2023 12:04:00 PM

nice questions... are these questions the same of the exam?

S
Synt
5/23/2023 9:33:00 PM

need to view

V
Vey
5/27/2023 12:06:00 AM

highly appreciate for your sharing.

T
Tshepang
8/18/2023 4:41:00 AM

kindly share this dump. thank you

J
Jay
9/26/2023 8:00:00 AM

link plz for download

L
Leo
10/30/2023 1:11:00 PM

data quality oecd

B
Blessious Phiri
8/13/2023 9:35:00 AM

rman is one good recovery technology

AI Tutor 👋 I’m here to help!