PCCSE questions • Exam prepare

palo_alto_networks PCCSE

Custom view settings

Exam contains 249 questions

Page 18 of 42

Question 103 🔥

Which of the following are correct statements regarding the use of access keys? (Choose two.)

Which database solution meets these requirements?

A. Access keys must have an expiration date

B. Up to two access keys can be active at any time

Highly voted

C. System Admin can create access key for all users

D. Access keys are used for API calls

Highly voted

Discussion of the question

Question 104 🔥

Given the following RQL:Which audit event snippet is identified by the RQL?

Which database solution meets these requirements?

Highly voted

Discussion of the question

Question 105 🔥

The development team is building pods to host a web front end, and they want to protect these pods with an application firewall.Which type of policy should be created to protect this pod from Layer7 attacks?

Which database solution meets these requirements?

A. The development team should create a WAAS rule for the host where these pods will be running.

B. The development team should create a WAAS rule targeted at all resources on the host.

C. The development team should create a runtime policy with networking protections.

D. The development team should create a WAAS rule targeted at the image name of the pods.

Highly voted

Discussion of the question

Question 106 🔥

A manager informs the SOC that one or more RDS instances have been compromised and the SOC needs to make sure production RDS instances are NOT publicly accessible.Which action should the SOC take to follow security best practices?

Which database solution meets these requirements?

A. Enable “AWS S3 bucket is publicly accessible” policy and manually remediate each alert.

B. Enable “AWS RDS database instance is publicly accessible” policy and for each alert, check that it is a production instance, and then manually remediate.

C. Enable “AWS S3 bucket is publicly accessible” policy and add policy to an auto-remediation alert rule.

D. Enable “AWS RDS database instance is publicly accessible” policy and add policy to an auto-remediation alert rule.

Highly voted

Discussion of the question

Question 107 🔥

An administrator wants to enforce a rate limit for users not being able to post five (5) .tar.gz files within five (5) seconds.What does the administrator need to configure?

Which database solution meets these requirements?

A. A ban for DoS protection with an average rate of 5 and file extensions match on .tar.gz on WAAS

B. A ban for DoS protection with a burst rate of 5 and file extensions match on .tar.gz on CNNF

C. A ban for DoS protection with a burst rate of 5 and file extensions match on .tar gz on WAAS

Highly voted

D. A ban for DoS protection with an average rate of 5 and file extensions match on .tar.gz on CNNF

Discussion of the question

Question 108 🔥

Given a default deployment of Console, a customer needs to identify the alerted compliance checks that are set by default.Where should the customer navigate in Console?

Which database solution meets these requirements?

A. Monitor > Compliance

B. Defend > Compliance

Highly voted

C. Manage > Compliance

D. Custom > Compliance

Discussion of the question

Ready to Pass Your Certification Test

palo_alto_networks PCCSE

Exam contains 249 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us