How can an engineer verify that only the intended changes will be applied when modifying Prisma Access policy configuration in Strata Cloud Manager (SCM)?

• A.Review the SCM portal for blue circular indicators next to each configuration menu item and ensure only the intended areas of configuration have this indicator.
• B.Compare the candidate configuration and the most recent version under "Config Version Snapshots/
• C.Select the most recent job under Operations > Push Status to view the pending changes that would apply to Prisma Access.
• D.Open the push dialogue in SCM to preview all changes which would be pushed to Prisma Access.

Comment: *

Name: *

Email: *

Verification: *

A customer is implementing Prisma Access (Managed by Strata Cloud Manager) to connect mobile users, branch locations, and business-to- business (B2B) partners to their data centers.
The solution must meet these requirements:
The mobile users must have internet filtering, data center connectivity, and remote site connectivity to the branch locations.
The branch locations must have internet filtering and data center connectivity.
The B2B partner connections must only have access to specific data center internally developed applications running on non-standard ports.
The security team must have access to manage the mobile user and access to branch locations.
The network team must have access to manage only the partner access.
How can the engineer configure mobile users and branch locations to meet the requirements?

• A.Use GlobalProtect and Remote Networks to filter internet traffic and provide access to data center resources using service connections.
• B.Use Explicit Proxy to filter internet traffic and provide access to data center resources using service connections.
• C.Use GlobalProtect to filter internet traffic and provide access to data center resources using service connections.
• D.Use Explicit Proxy and Remote Networks to filter internet traffic and provide access to data center resources using service connections.

Comment: *

Name: *

Email: *

Verification: *

When a review of devices discovered by IoT Security reveals network routers appearing multiple times with different IP addresses, which configuration will address the issue by showing only unique devices?

• A.Add the duplicate entries to the ignore list in IoT Security.
• B.Merge individual devices into a single device with multiple interfaces.
• C.Create a custom role to merge devices with the same hostname and operating system.
• D.Delete all duplicate devices, keeping only those discovered using their management IP addresses.

Comment: *

Name: *

Email: *

Verification: *

How can a network security team be granted full administrative access to a tenant's configuration while restricting access to other tenants by using role-based access control (RBAC) for Panorama Managed Prisma Access in a multitenant environment?

• A.Create an Access Domain and restrict access to only the Device Groups and Templates for the Target Tenant.
• B.Create a custom role enabling all privileges within the specific tenant's scope and assign it to the security team's user accounts.
• C.Create a custom role with Device Group and Template privileges and assign it to the security team's user accounts.
• D.Set the administrative accounts for the security team to the "Superuser" role.

Comment: *

Name: *

Email: *

Verification: *

In addition to creating a Security policy, how can an AI Access Security be used to prevent users from uploading financial information to ChatGPT?

• A.Apply File Blocking to stop file uploads containing financial information.
• B.Configure an Enterprise DLP rule to block uploads containing financial information.
• C.Add the ChatGPT domains using URL Filtering to block uploads containing financial information.
• D.Apply a vulnerability profile to stop attempts to exploit system flaws or gain unauthorized access to financial systems.

Comment: *

Name: *

Email: *

Verification: *