Palo Alto Networks Exam PSE-Endpoint Topic 2 Question 74 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint exam

Question #: 74
Topic #: 2

During installation of the ESM and the agent, SSL was enabled on an endpoint. However, the agent communication is failing. The services.log on the endpoint has the following error.

*An error occurred while making the HTTP request to https: //hostname:2125/CyveraServer/. This could be due to the fact that the server certificate is not configured property with HTTP SYS in the HTTPS case. This could also be caused by a mismatch of the security binding between the client and the server."

Which certificate can be imported on the endpoint to solve this issue? Assume the hostname is a valid FQDN and the ESM Server and Console have different certificates.

AESM Server Public Certificate

BESM Server Serf-Signed Certificate

CESM Console Self-Signed Certificate

DESM Console Public Certificate

Show Suggested Answer

Suggested Answer: B

by Alba at Sep 19, 2024, 09:07 AM

Limited Time Offer

25%

Off

Get Premium PSE-Endpoint Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Shayne

21 days ago

Ah, the age-old dilemma of SSL certificates. It's like trying to navigate a maze of acronyms and gibberish. I'm just going to close my eyes and point at one of the answers. Eeny, meeny, miny, moe...

upvoted 0 times

...

Deandrea

22 days ago

This is a tough one. But I'm going to have to go with C) ESM Console Self-Signed Certificate. It's the only option that mentions a self-signed certificate, and that could be the culprit.

upvoted 0 times

...

Franchesca

23 days ago

Wait, wait, wait. If the ESM Server and Console have different certificates, then the issue could be with either one. I'm going to go with B) ESM Server Self-Signed Certificate just to be safe.

upvoted 0 times

Dianne

12 days ago

Alright, let's import the ESM Server Self-Signed Certificate and see if that resolves the communication issue.

upvoted 0 times

...

Krissy

14 days ago

I agree, it's worth a shot. Let's go with option B) ESM Server Self-Signed Certificate.

upvoted 0 times

...

Annett

16 days ago

I think the issue might be with the ESM Server certificate. Maybe try importing the ESM Server Self-Signed Certificate.

upvoted 0 times

...

Luisa

1 months ago

But the error message mentions the server certificate, so I still think it's the ESM Server Public Certificate.

upvoted 0 times

...

Margot

1 months ago

I disagree, I believe the ESM Console Self-Signed Certificate is the correct one to import.

upvoted 0 times

...

Lilli

1 months ago

Hmm, I'm not so sure. The question states that the ESM Server and Console have different certificates, so it might be D) ESM Console Public Certificate.

upvoted 0 times