PCNSA Exam Dumps - Paloalto Networks Network Security Administrator Questions and Answers

TACACS

SAML2

SAML10

Kerberos

TACACS+

Drop the traffic silently

Perform the default deny action as defined in the App-ID database for the application

Send a TCP reset packet to the client- and server-side devices

Discard the session's packets and send a TCP reset packet to let the client know the session has been terminated

All traffic matching the SuperApp_chat, and SuperApp_download is denied because it no longer matches the SuperApp-base application

No impact because the apps were automatically downloaded and installed

No impact because the firewall automatically adds the rules to the App-ID interface

All traffic matching the SuperApp_base, SuperApp_chat, and SuperApp_download is denied until the security administrator approves the applications

on unknown-tcp or unknown-udp traffic

after it is matched by a security policy that allows traffic

before it is matched by a security policy

after it is matched by a security policy that allows or blocks traffic

Reset-client

Reset-server

Deny

Allow

It provides sorting options that do not affect rule order.

It displays rule utilization.

It details associated zones.

It specifies applications seen by rules.

To correctly identify an internal application in the traffic log

To change the default categorization of an application

To visually group similar applications

To reduce unidentified traffic on a network

Policy Optimizer

App-ID

Security profile

Policy-based forwarding

If it is an allowed rule, then the Security Profile action is applied last

If it is a block rule then the Security policy rule action is applied last

If it is an allow rule then the Security policy rule is applied last

If it is a block rule then Security Profile action is applied last