EMT Practice Test

1. Question Content...


Question List

Question1: Which technique is an example of a DNS attack that Advanced DNS Security can detect and prevent?

Question2: A company with Palo Alto Networks NGFWs protecting its physical data center servers is experiencing a performance issue on its Active Directory (AD) servers due to high numbers of requests and updates the NGFWs are placing on the servers. How can the NGFWs be enabled to efficiently identify users without overloading the AD servers?

Question3: A company has multiple business units, each of which manages its own user directories and identity providers (IdPs) with different domain names. The company's network security team wants to deploy a shared GlobalProtect remote access service for all business units to authenticate users to each business unit's IdP.
Which configuration will enable the network security team to authenticate GlobalProtect users to multiple SAML IdPs?

Question4: A systems engineer (SE) successfully demonstrates NGFW managed by Strata Cloud Manager (SCM) to a company. In the resulting planning phase of the proof of value (POV), the CISO requests a test that shows how the security policies are either meeting, or are progressing toward meeting, industry standards such as Critical Security Controls (CSC), and how the company can verify that it is effectively utilizing the functionality purchased.
During the POV testing timeline, how should the SE verify that the POV will meet the CISO's request?

Question5: What is the minimum configuration to stop a Cobalt Strike Malleable C2 attack inline and in real time?

Question6: Which two actions can a systems engineer take to discover how Palo Alto Networks can bring value to a customer's business when they show interest in adopting Zero Trust? (Choose two.)

Question7: A prospective customer is interested in Palo Alto Networks NGFWs and wants to evaluate the ability to segregate its internal network into unique BGP environments.
Which statement describes the ability of NGFWs to address this need?

Question8: A company with a large Active Directory (AD) of over 20,000 groups has user roles based on group membership in the directory. Up to 1,000 groups may be used in Security policies. The company has limited operations personnel and wants to reduce the administrative overhead of managing the synchronization of the groups with their firewalls.
What is the recommended architecture to synchronize the company's AD with Palo Alto Networks firewalls?

Question9: While responding to a customer RFP, a systems engineer (SE) is presented the question, "How do PANW firewalls enable the mapping of transactions as part of Zero Trust principles?" Which two narratives can the SE use to respond to the question? (Choose two.)

Question10: When a customer needs to understand how Palo Alto Networks NGFWs lower the risk of exploitation by newly announced vulnerabilities known to be actively attacked, which solution and functionality delivers the most value?

Question11: In addition to Advanced DNS Security, which three Cloud-Delivered Security Services (CDSS) subscriptions utilize inline machine learning (ML)? (Choose three)

Question12: Which three tools can a prospective customer use to evaluate Palo Alto Networks products to assess where they will fit in the existing architecture? (Choose three)

Question13: What are the first two steps a customer should perform as they begin to understand and adopt Zero Trust principles? (Choose two)

Question14: What is used to stop a DNS-based threat?

Question15: What does Policy Optimizer allow a systems engineer to do for an NGFW?

Question16: A customer has acquired 10 new branch offices, each with fewer than 50 users and no existing firewall.
The systems engineer wants to recommend a PA-Series NGFW with Advanced Threat Prevention at each branch location. Which NGFW series is the most cost-efficient at securing internet traffic?

Question17: Which two products can be integrated and managed by Strata Cloud Manager (SCM)? (Choose two)

Question18: A customer claims that Advanced WildFire miscategorized a file as malicious and wants proof, because another vendor has said that the file is benign.
How could the systems engineer assure the customer that Advanced WildFire was accurate?

Question19: What are three valid Panorama deployment options? (Choose three.)

Question20: According to a customer's CIO, who is upgrading PAN-OS versions, "Finding issues and then engaging with your support people requires expertise that our operations team can better utilize elsewhere on more valuable tasks for the business." The upgrade project was initiated in a rush because the company did not have the appropriate tools to indicate that their current NGFWs werereaching capacity.
Which two actions by the Palo Alto Networks team offer a long-term solution for the customer? (Choose two.)

Question21: Regarding APIs, a customer RFP states: "The vendor's firewall solution must provide an API with an enforcement mechanism to deactivate API keys after two hours." How should the response address this clause?

Question22: Which three known variables can assist with sizing an NGFW appliance? (Choose three.)

Question23: Which use case is valid for Palo Alto Networks Next-Generation Firewalls (NGFWs)?

Question24: Which two files are used to deploy CN-Series firewalls in Kubernetes clusters? (Choose two.)

Question25: A company plans to deploy identity for improved visibility and identity-based controls for least privilege access to applications and data. The company does not have an on-premises Active Directory (AD) deployment, and devices are connected and managed by using a combination of Entra ID and Jamf.
Which two supported sources for identity are appropriate for this environment? (Choose two.)

Question26: Device-ID can be used in which three policies? (Choose three.)

Question27: A systems engineer (SE) is working with a customer that is fully cloud-deployed for all applications. The customer is interested in Palo Alto Networks NGFWs but describes the following challenges:
"Our apps are in AWS and Azure, with whom we have contracts and minimum-revenue guarantees. We would use the built-in firewall on the cloud service providers (CSPs), but the need for centralized policy management to reduce human error is more important." Which recommendations should the SE make?

Question28: A systems engineer should create a profile that blocks which category to protect a customer from ransomware URLs by using Advanced URL Filtering?

Question29: A customer asks a systems engineer (SE) how Palo Alto Networks can claim it does not lose throughput performance as more Cloud-Delivered Security Services (CDSS) subscriptions are enabled on the firewall.
Which two concepts should the SE explain to address the customer's concern? (Choose two.)