New Year Special Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

Home > Paloalto Networks > SASE Professional > PSE-SASE

PSE-SASE Palo Alto Networks System Engineer Professional - SASE Exam Question and Answers

Question # 4

What is a benefit of deploying secure access service edge (SASE) with a secure web gateway (SWG) over a SASE solution without a SWG?

A.

A heartbeat connection between the firewall peers ensures seamless failover in the event that a peer goes down.

B.

It prepares the keys and certificates required for decryption, creating decryption profiles and policies, and configuring decryption port mirroring.

C.

Protection is offered in the cloud through a unified platform for complete visibility and precise control over web access while enforcing security policies that protect users from hostile websites.

D.

It creates tunnels that allow users and systems to connect securely over a public network as if they were connecting over a local area network (LAN).

Full Access
Question # 5

Which statement describes the data loss prevention (DLP) add-on?

A.

It prevents phishing attacks by controlling the sites to which users can submit valid corporate credentials.

B.

It employs automated policy enforcement to allow trusted behavior with a new Device-ID policy construct.

C.

It is a centrally delivered cloud service with unified detection policies that can be embedded in existing control points.

D.

It enables data sharing with third-party tools such as security information and event management (SIEM) systems.

Full Access
Question # 6

What happens when SaaS Security sees a new or unknown SaaS application?

A.

It forwards the application for WildFire analysis.

B.

It uses machine learning (ML) to classify the application.

C.

It generates alerts regarding changes in performance.

D.

It extends the branch perimeter to the closest node with high performance.

Full Access
Question # 7

What allows enforcement of policies based on business intent, enables dynamic path selection, and provides visibility into performance and availability for applications and networks?

A.

Identity Access Management (IAM) methods

B.

Firewall as a Service (FWaaS)

C.

Instant-On Network (ION) devices

D.

Cloud Access Security Broker (CASB)

Full Access
Question # 8

Which CLI command allows visibility into SD-WAN events such as path selection and path quality measurements?

A.

>show sdwan connection all |

B.

>show sdwan session distribution policy-name

C.

>show sdwan path-monitor stats vif

D.

>show sdwan event

Full Access
Question # 9

Which two services are part of the Palo Alto Networks cloud-delivered security services (CDSS) package? (Choose two.)

A.

virtual desktop infrastructure (VDI)

B.

Internet of Things (IoT) Security

C.

Advanced URL Filtering (AURLF)

D.

security information and event management (SIEM)

Full Access