Palo Alto Networks Exam PSE-Endpoint Topic 2 Question 53 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint exam

Question #: 53
Topic #: 2

An administrator is concerned about rogue installs of Internet Explorer.

Which policy can be created to assure that Internet Explorer can only run from the \Program Files \Internet Explorer \directory?

AAn execution path policy to blacklist iexplore.exe, and whitelist entry for %programfiles%\iexplore.exe

BAn execution path policy to blacklist *\iexplore.exe. Trusted signers will allow the default iexplore.exe

CA whitelist of *\iexplore.exe with an execution path restriction, and a blackfirst of %system%\iexplore.exe

DAn execution path policy to blacklist *\iexplore.exe, and a whitelist entry for %programfiles%\Internet Explorer\iexplore.exe

Show Suggested Answer

Suggested Answer: D

by Bernardo at Nov 24, 2023, 10:42 PM

Limited Time Offer

25%

Off

Get Premium PSE-Endpoint Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Haydee

11 months ago

Okay, let's look at the options. I'm leaning towards D - it seems to directly address the requirement of only allowing IE to run from the specified directory.

upvoted 0 times

...

Kristine

11 months ago

Hmm, I think the key here is to focus on the goal of the policy - to ensure that IE can only run from the specified directory. Let's think this through carefully.

upvoted 0 times

...

Patria

11 months ago

Yeah, it seems like they're really trying to test our knowledge of the intricacies of execution path policies. I'm not sure I'm comfortable with that level of detail.

upvoted 0 times

...

Haydee

11 months ago

Wow, this question is really specific. I wonder how often they ask these kinds of niche policy questions on the exam.

upvoted 0 times

Cristen

10 months ago

D) An execution path policy to blacklist *\iexplore.exe, and a whitelist entry for %programfiles%\Internet Explorer\iexplore.exe

upvoted 0 times

...

Brett

10 months ago

C) A whitelist of *\iexplore.exe with an execution path restriction, and a blacklist of %system%\iexplore.exe

upvoted 0 times

...

Leanora

10 months ago

B) An execution path policy to blacklist *\iexplore.exe. Trusted signers will allow the default iexplore.exe

upvoted 0 times

...

Dottie

10 months ago

A) An execution path policy to blacklist iexplore.exe, and whitelist entry for %programfiles%\iexplore.exe

upvoted 0 times

...