EMT Practice Test

1. Question Content...


Question List

Question1: When the Cortex Data Lake is sized for Traps Management Service, which two factors should be considered? (Choose two.)

Question2: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question3: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question4: Which statement applies to Palo Alto Networks Single Pass Parallel Processing (SP3)?

Question5: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question6: A prospective customer currently uses a firewall that provides only Layer 4 inspection and protections. The customer sees traffic going to an external destination, port 53, but cannot determine what Layer 7 application traffic is going over that port Which capability of PAN-OS would address the customer's lack of visibility?

Question7: in which step of the Palo Alto Networks Five-Step Zero Trust Methodology would an organization's critical data, applications, assets, and services (DAAS) be identified?

Question8: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question9: A WildFire subscription is required for which two of the following activities? (Choose two)

Question10: A customer is seeing an increase in the number of malicious files coming in from undetectable sources in their network. These files include doc and .pdf file types.
The customer uses a firewall with User-ID enabled
Which feature must also be enabled to prevent these attacks?

Question11: In an HA pair running Active/Passive mode, over which interface do the dataplanes communicate?

Question12: WildFire machine learning (ML) for portable executable (PE) files is enabled in the antivirus profile and added to the appropriate firewall rules in the profile. In the Palo Alto Networks WildFire test av file, an attempt to download the test file is allowed through.
Which command returns a valid result to verify the ML is working from the command line.

Question13: A customer is concerned about zero-day targeted attacks against its intellectual property.
Which solution informs a customer whether an attack is specifically targeted at them?

Question14: Which three items contain information about Command-and-Control (C2) hosts? (Choose three.)

Question15: Which Palo Alto Networks security component should an administrator use to and NGFW policies to remote users?

Question16: What is the recommended way to ensure that firewalls have the most current set of signatures for up-to-date protection?

Question17: In which two ways can PAN-OS software consume MineMeld outputs? (Choose two.)

Question18: How do you configure the rate of file submissions to WildFire in the NGFW?

Question19: What are two advantages of the DNS Sinkholing feature? (Choose two.)

Question20: Which is the smallest Panorama solution that can be used to manage up to 2500 Palo Alto Networks Next Generation firewalls?

Question21: in which step of the Palo Alto Networks Five-Step Zero Trust Methodology would an organization's critical data, applications, assets, and services (DAAS) be identified?

Question22: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question23: Which three script types can be analyzed in WildFire? (Choose three)

Question24: in which step of the Palo Alto Networks Five-Step Zero Trust Methodology would an organization's critical data, applications, assets, and services (DAAS) be identified?

Question25: Which two features are found in a Palo Alto Networks NGFW but are absent in a legacy firewall product? (Choose two.)

Question26: The ability to prevent users from resolving internet protocol (IP) addresses to malicious, grayware, or newly registered domains is provided by which Security service?

Question27: When the Cortex Data Lake is sized for Traps Management Service, which two factors should be considered? (Choose two.)

Question28: Which two configuration items are required when the NGFW needs to act as a decryption broker for multiple transparent bridge security chains? (Choose two.)

Question29: What are three sources of malware sample data for the Threat Intelligence Cloud? (Choose three)

Question30: Which two network events are highlighted through correlation objects as potential security risks? (Choose two.)

Question31: What is the basis for purchasing Cortex XDR licensing?

Question32: An administrator wants to justify the expense of a second Panorama appliance for HA of the management layer.
The customer already has multiple M-100s set up as a log collector group. What are two valid reasons for deploying Panorama in High Availability? (Choose two.)

Question33: What are two core values of the Palo Alto Network Security Operating Platform? (Choose two.}

Question34: A customer is designing a private data center to host their new web application along with a separate headquarters for users.
Which cloud-delivered security service (CDSS) would be recommended for the headquarters only?

Question35: What two types of certificates are used to configure SSL Forward Proxy? (Сhoose two.)

Question36: Which two email links, contained in SMTP and POP3, can be submitted from WildFire analysis with a WildFire subscription? (Choose two.)

Question37: When the Cortex Data Lake is sized for Traps Management Service, which two factors should be considered? (Choose two.)

Question38: What will a Palo Alto Networks next-generation firewall (NGFW) do when it is unable to retrieve a DNS verdict from the DNS cloud service in the configured lookup time?

Question39: Which of the following statements is valid with regard to Domain Name System (DNS) sinkholing?

Question40: Which three signature-based Threat Prevention features of the firewall are informed by intelligence from the Threat Intelligence Cloud? (Choose three.)

Question41: In PAN-OS 10.0 and later, DNS Security allows policy actions to be applied based on which three domains? (Choose three.)

Question42: What are two presales selling advantages of using Expedition? (Choose two.)

Question43: Which two configuration elements can be used to prevent abuse of stolen credentials? (Choose two.)

Question44: Which two features can be enabled to support asymmetric routing with redundancy on a Palo Alto networks next-generation firewall (NGFW)? (Choose two.)

Question45: What will a Palo Alto Networks next-generation firewall (NGFW) do when it is unable to retrieve a DNS verdict from the DNS cloud service in the configured lookup time?

Question46: XYZ Corporation has a legacy environment with asymmetric routing. The customer understands that Palo Alto Networks firewalls can support asymmetric routing with redundancy. Which two features must be enabled to meet the customer's requirements? (Choose two.)

Question47: Which two features are key in preventing unknown targeted attacks? (Choose two)

Question48: For customers with high bandwidth requirements for Service Connections, what two limitations exist when onboarding multiple Service Connections to the same Prisma Access location servicing a single Datacenter? (Choose two.)

Question49: Which three considerations should be made prior to installing a decryption policy on the NGFW? (Choose three.)

Question50: A packet that is already associated with a current session arrives at the firewall.
What is the flow of the packet after the firewall determines that it is matched with an existing session?

Question51: The firewall includes predefined reports, custom reports can be built for specific data and actionable tasks, or predefined and custom reports can be combined to compile information needed to monitor network security.
The firewall provides which three types of reports? (Choose three.)

Question52: What will a Palo Alto Networks next-generation firewall (NGFW) do when it is unable to retrieve a DNS verdict from the DNS cloud service in the configured lookup time?