EMT Practice Test

1. Question Content...


Question List

Question1: In a security policy what is the quickest way to rest all policy rule hit counters to zero?

Question2: What is an advantage for using application tags?

Question3: Identify the correct order to configure the PAN-OS integrated USER-ID agent.
3. add the service account to monitor the server(s)
2. define the address of the servers to be monitored on the firewall
4. commit the configuration, and verify agent connection status
1. create a service account on the Domain Controller with sufficient permissions to execute the User- ID agent

Question4: Which Palo Alto Networks firewall security platform provides network security for mobile endpoints by inspecting traffic deployed as internet gateways?

Question5: Match the Cyber-Attack Lifecycle stage to its correct description.

Question6: To use Active Directory to authenticate administrators, which server profile is required in the authentication profile?

Question7: Four configuration choices are listed, and each could be used to block access to a specific URL. If you configured each choices to block the sameURL then which choice would be the last to block access to the URL?

Question8: Which file is used to save the running configuration with a Palo Alto Networks firewall?

Question9: Which Palo Alto network security operating platform component provides consolidated policy creation and centralized management?

Question10: Which data-plane processor layer of the graphic shown provides uniform matching for spyware and vulnerability exploits on a Palo Alto Networks Firewall?

Question11: An administrator notices that protection is needed for traffic within the network due to malicious lateral movement activity. Based on the image shown, which traffic would the administrator need to monitor and block to mitigate the malicious activity?

Question12: Which license must an Administrator acquire prior to downloading Antivirus Updates for use with the firewall?

Question13: Order the steps needed to create a new security zone with a Palo Alto Networks firewall.

Question14: Which User-ID agent would be appropriate in a network with multiple WAN links, limited network bandwidth, and limited firewall management plane resources?

Question15: Which service protects cloud-based applications such as Dropbox and Salesforce by administering permissions and scanning files for sensitive information?

Question16: Given the scenario, which two statements are correct regarding multiple static default routes? (Choose two.)

Question17: Which two security profile types can be attached to a security policy? (Choose two.)

Question18: Users from the internal zone need to be allowed to Telnet into a server in the DMZ zone.
Complete the security policy to ensure only Telnet is allowed.
Security Policy: Source Zone: Internal to DMZ Zone __________services "Application defaults", and action = Allow

Question19: Which two Palo Alto Networks security management tools provide a consolidated creation of policies, centralized management and centralized threat intelligence. (Choose two.)

Question20: Which two App-ID applications will need to be allowed to use Facebook-chat? (Choose two.)

Question21: Which two configuration settings shown are not the default? (Choose two.)

Question22: The PowerBall Lottery has reached an unusually high value this week. Your company has decided to raise morale by allowing employees to access the PowerBall Lottery website (www.powerball.com) for just this week. However, the company does not want employees to access any other websites also listed in the URL filtering "gambling" category.
Which method allows the employees to access the PowerBall Lottery website but without unblocking access to the "gambling" URL category?

Question23: Match each feature to the DoS Protection Policy or the DoS Protection Profile.

Question24: Which interface type can use virtual routers and routing protocols?

Question25: Which protocol used to map username to user groups when user-ID is configured?

Question26: Given the image, which two options are true about the Security policy rules. (Choose two.)

Question27: Which action related to App-ID updates will enable a security administrator to view the existing security policy rule that matches new application signatures?

Question28: Your company occupies one floor in a single building you have two active directory domain controllers on a single networks the firewall s management plane is only slightly utilized.
Which user-ID agent sufficient in your network?

Question29: A server-admin in the USERS-zone requires SSH-access to all possible servers in all current and future Public Cloud environments. All other required connections have already been enabled between the USERS- and the OUTSIDE-zone. What configuration-changes should the Firewall-admin make?

Question30: What in the minimum frequency for which you can configure the firewall too check for new wildfire antivirus signatures?

Question31: Which path in PAN-OS 10.0 displays the list of port-based security policy rules?

Question32: Match the network device with the correct User-ID technology.

Question33: Which type of administrative role must you assign to a firewall administrator account, if the account must include a custom set of firewall permissions?

Question34: How often does WildFire release dynamic updates?

Question35: An internal host wants to connect to servers of the internet through using source NAT.
Which policy is required to enable source NAT on the firewall?

Question36: Which statement is true regarding a Best Practice Assessment?

Question37: Which prevention technique will prevent attacks based on packet count?

Question38: Which administrator type utilizes predefined roles for a local administrator account?

Question39: Which administrator receives a global notification for a new malware that infects hosts. The infection will result in the infected host attempting to contact and command-and-control (C2) server.
Which security profile components will detect and prevent this threat after the firewall`s signature database has been updated?

Question40: Based on the graphic which statement accurately describes the output shown in the server monitoring panel?

Question41: Complete the statement. A security profile can block or allow traffic____________

Question42: What are three differences between security policies and security profiles? (Choose three.)