Get New 2022 Palo Alto Networks exam PSE-Cortex Dumps Bundle On flat Updated Dumps!
Full PSE-Cortex Practice Test and 60 unique questions with explanations waiting just for you, get it now!
NEW QUESTION 36
The certificate used for decryption was installed as a trusted toot CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console.What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?
- A. enable SSL decryption
- B. disable SSL decryption
- C. reinstall the root CA certificate
- D. add paloaltonetworks.com to the SSL Decryption Exclusion list
Answer: B
NEW QUESTION 37
In Cortex XDR Prevent, which three matching criteria can be used to dynamically group endpoints? (Choose three )
- A. alert root cause
- B. domain/workgroup membership
- C. presence of Flash executable
- D. hostname
- E. OS
Answer: B,D,E
NEW QUESTION 38
Which three Demisto incident type features can be customized under Settings > Advanced > Incident Types?
(Choose three.)
- A. Drop new incidents of the same type that contain similar information
- B. Add new fields to an incident type
- C. Define the way that incidents of a specific type are displayed in the system
- D. Set reminders for an incident SLA
- E. Define whether a playbook runs automatically when an incident type is encountered
Answer: A,C,E
NEW QUESTION 39
Which two entities can be created as a BIOC? (Choose two.)
- A. event log
- B. alert log
- C. registry
- D. file
Answer: C,D
Explanation:
https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/investigation-and-response/cortex-xdr-indicators/working-with-biocs/create-a-bioc-rule.html
NEW QUESTION 40
Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on-demand malware scan (Choose two )
- A. Endpoint > Endpoint Management
- B. the local console
- C. Response > Action Center
- D. Telnet
Answer: C,D
NEW QUESTION 41
In Cortex XDR Prevent, which three matching criteria can be used to dynamically group endpoints? (Choose three.)
- A. quarantine status
- B. attack threat intelligence tag
- C. hostname
- D. Domain/workgroup membership
- E. OS
Answer: C,D,E
NEW QUESTION 42
The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?
- A. enable SSL decryption
- B. add paloaltonetworks com to the SSL Decryption Exclusion list
- C. disable SSL decryption
- D. reinstall the root CA certificate
Answer: D
NEW QUESTION 43
A prospect has agreed to do a 30-day POC and asked to integrate with a product that Demisto currently does not have an integration with. How should you respond?
- A. Tell them we can build it with Professional Services.
- B. Agree to build the integration as part of the POC
- C. Extend the POC window to allow the solution architects to build it
- D. Tell them custom integrations are not created as part of the POC
Answer: D
NEW QUESTION 44
When integrating with Splunk, what will allow you to push alerts into Cortex XSOAR via the REST API?
- A. SplunkSearch automation
- B. Cortex XSOAR TA App for Splunk
- C. SplunkGO integration
- D. splunk-get-alerts integration command
Answer: B
NEW QUESTION 45
During the TMS instance activation, a tenant (Customer) provides the following information for the fields in the Activation - Step 2 of 2 window.
During the service instance provisioning which three DNS host names are created? (Choose three.)
- A. hc-xnet50.traps.paloaltonetworks.com
- B. cc.xnet50traps.paloaltonetworks.com
- C. xnettraps.paloaltonetworks.com
- D. cc-xnet50.traps.paloaltonetworks.com
- E. ch-xnet.traps.paloaltonetworks.com
- F. cc-xnet.traps.paloaltonetworks.com
Answer: D,E,F
NEW QUESTION 46
Which two log types should be configured for firewall forwarding to the Cortex Data Lake for use by Cortex XDR? (Choose two)
- A. HIP
- B. Correlation
- C. Security Event
- D. Analytics
Answer: A,C
NEW QUESTION 47
Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on-demand malware scan (Choose two )
- A. the local console
- B. Response > Action Center
- C. Telnet
- D. Endpoint > Endpoint Management
Answer: B,D
NEW QUESTION 48
How can you view all the relevant incidents for an indicator?
- A. Related Incidents column in Indicator Screen
- B. Linked Indicators column in Incident Screen
- C. Linked Incidents column in Indicator Screen
- D. Related Indicators column in Incident Screen
Answer: B
NEW QUESTION 49
A test for a Microsoft exploit has been planned. After some research Internet Explorer 11 CVE-2016-0189 has been selected and a module in Metasploit has been identified (exploit/windows/browser/ms16_051_vbscript) The description and current configuration of the exploit are as follows;
What is the remaining configuration?
A)
B)
C)
D)
- A. Option D
- B. Option B
- C. Option A
- D. Option C
Answer: A
NEW QUESTION 50
What are process exceptions used for?
- A. whitelist programs from WildFire analysis
- B. permit processes to load specific DLLs
- C. change the WildFire verdict for a given executable
- D. disable an EPM for a particular process
Answer: D
NEW QUESTION 51
......
[Jan-2022] Pass Palo Alto Networks PSE-Cortex Exam in First Attempt Guaranteed: https://drive.google.com/open?id=1XXmI3YHx8dR5A2rDckGPvEfn-8V24g21
Reduce Your Chance of Failure in PSE-Cortex Exam: https://www.practicevce.com/Palo-Alto-Networks/PSE-Cortex-practice-exam-dumps.html