Free Palo Alto Networks PCNSA Exam Dumps Questions & Answers

What do dynamic user groups you to do?

• A.  create a policy that provides auto-sizing for anomalous user behavior and malicious activity
• B.  create a policy that provides auto-remediation for anomalous user behavior and malicious activity
• C.  create a QoS policy that provides auto-remediation for anomalous user behavior and malicious activity
• D.  create a dynamic list of firewall administrators

An administrator would like to protect against inbound threats such as buffer overflows and illegal code execution.
Which Security profile should be used?

• A.  Anti-spyware
• B.  Antivirus
• C.  URL filtering
• D.  Vulnerability protection

The administrator profile "SYS01 Admin" is configured with authentication profile "Authentication Sequence SYS01," and the authentication sequence SYS01 has a profile list with four authentication profiles:
* Auth Profile LDAP
* Auth Profile Radius
* Auth Profile Local
* Auth Profile TACACS
After a network outage, the LDAP server is no longer reachable. The RADIUS server is still reachable but has lost the "SYS01 Admin" username and password.
What is the "SYS01 Admin" login capability after the outage?

• A.  Auth KO because LDAP server is not reachable
• B.  Auth KO because RADIUS server lost user and password for SYS01 Admin
• C.  Auth OK because of the Auth Profile TACACS -
• D.  Auth OK because of the Auth Profile Local

Choose the option that correctly completes this statement. A Security Profile can block or allow traffic
____________.

• A.  after it is matched by a security policy rule that allows or blocks traffic.
• B.  after it is matched by a security policy rule that allows traffic.
• C.  before it is matched to a Security policy rule.
• D.  on either the data place or the management plane.

What are three characteristics of the Palo Alto Networks DNS Security service? (Choose three.)

• A.  It requires a valid Threat Prevention license.
• B.  It enables users to access real-time protections using advanced predictive analytics.
• C.  It requires a valid URL Filtering license.
• D.  It requires an active subscription to a third-party DNS Security service.
• E.  It uses techniques such as DGA.DNS tunneling detection and machine learning.