Free Palo Alto Networks PSE-Endpoint Exam Dumps and PSE-Endpoint Exam Questions

Question No: 11

MultipleChoice

Traps agents use a default password for uninstallation in the event that they never communicate with their ESM server. Identify the password.

Options

APaloAlto!

BUninstall1

CNo password is required

DPassword1

Question No: 12

MultipleChoice

An ESM server’s SSL certificate needs two Enhanced Key Usage purposes:

Client Authentication and ________________

Options

AServer Authentication

BFile Recovery

CIP Security User

DIP Security Tunnel Termination

Question No: 13

MultipleChoice

To ensure that the Traps VDI tool can obtain verdicts for all unknown files what are the things that needs to be checked? Assuming ESM Console and ESM Server are on different servers. (Choose two.)

Options

AESM Server can access WildFire Server

BEndpoint can access WildFire Server

CESM Console can access WildFire Server

DEndpoint can access ESM Server

Question No: 14

MultipleChoice

There are two custom policy rules in ESM Console. Policy rule number 1000 turns ROP off for winword.exe. Policy rule number 1001 turns ROP on for winword.exe

What is the ROP module status for winword.exe?

Options

ADue to the collision in the policy rules, ROP is enabled in notification mode.

BThe lower numbered policy rule takes precedence. ROP is off for winword.exe

CThe higher numbered policy rule takes precedence. ROP is on for winword.exe

DThe default policy rule takes precedence over both policy rules 1000 and 1001 and disables ROP for winword.exe

Question No: 15

MultipleChoice

An administrator receives an alert indicating the ESM service is not starting on the ESM Server. When the administrator tries to start the service manually, the administrator receives an error. "The Endpoint Security Manager service on Local Computer started and then stopped."

What is the cause of the failure?

Options

AThe Account assigned to the service does not have 'Log on as a batch job' permissions on the machine.

BThe Account assigned to the service does not have ''Log on as a service' permissions on the machine.

CThe Account assigned to the service is not the Local Administrator on the machine.

DThe Account assigned to the service is not an Active Directory Domain user.

Question No: 16

MultipleChoice

Which is the proper order of tasks that an administrator needs to perform to successfully create and install Traps 4.x for macOS agents?

Options

ADownload ClientUpgradePackage_4.x.x.zip from the support portal. Copy ClientUpgradePackage_4.x.x.zip to target endpoint. Unzip and run traps pkg.

BDownload ClientUpgradePackage.zip from the support portal. Create installation package on ESM using .zip file, download installpackage.zip file. Copy installpackage.zip to target endpoint. Unzip and run traps pkg.

CDownload Traps_macOS_4.x.x.zip from the support portal. Copy Traps_macOS_4.x.x.zip to target endpoint. Unzip and run traps pkg.

DDownload Traps_macOS_4.x.x.zip from the support portal. Create installation package on ESM using .zip file, download installpackage.zip file. Copy installpackage.zip to target endpoint. Unzip and run traps pkg.

Question No: 17

MultipleChoice

Once an administrator has successfully instated a Content Update, how is the Content Update applied to endpoint?

Options

AAfter Installation on the ESM, an Agent License renewal is required in order to trigger relevant updates.

BAfter installation on the ESM, relevant updates occur at the next Heartbeat communication from each endpoint.

CInstallation of a Content Update triggers a proactive push of the update by the ESM server to all endpoints with licensed Traps Agents within the Domain.

DThe Traps Agent must be reinstalled on the endpoint in order to apply the content update. Existing Agents will not be able to take advantage of content updates.

Question No: 18

MultipleChoice

During installation of the ESM and the agent, SSL was enabled on an endpoint. However, the agent communication is failing. The services.log on the endpoint has the following error.

*An error occurred while making the HTTP request to https: //hostname:2125/CyveraServer/. This could be due to the fact that the server certificate is not configured property with HTTP SYS in the HTTPS case. This could also be caused by a mismatch of the security binding between the client and the server."

Which certificate can be imported on the endpoint to solve this issue? Assume the hostname is a valid FQDN and the ESM Server and Console have different certificates.

Options

AESM Server Public Certificate

BESM Server Serf-Signed Certificate

CESM Console Self-Signed Certificate

DESM Console Public Certificate

Question No: 19

MultipleChoice

An administrator receives a number of email alerts indicating WildFire has prevented a malicious activity. All the prevention events refer to launching an Install Wizard that has received a benign verdict from WildFire. All prevention events are reported on a subset of endpoints, that have recently been migrated Mom another Traps deployment.

Which two troubleshooting actions are relevant to this investigation? (Choose two.)

Options

ACheck that the servers xml file has been cleared on the migrated endpoints.

BCheck that the ClientInfoHash tag has been cleared on the migrated endpoints.

CCheck that the actions xml file has not been cleared on the migrated endpoints.

DCheck that the WildFire cache has been cleared on the migrated endpoints.

Question No: 20

MultipleChoice

The ESM policy is set to upload unknowns to WildFire. However, when an unknown is executed the Upload status in ESM Console never displays "Upload in progress", and the verdict remains local analysis or unknown. Even clicking the upload button and checking in does not resolve the Issue. A line in the log file suggests not being able to download a file from "https:/ESMSERVER/BitsUploads/… to C:ProgramDataCyveraTemp..."

Which solution fixes this problem?

Options

ARestart BITS service on the endpoint

BRestart BITS service on ESM

CRemove and reinstall all the agents without SSL

DIn the ESM Console, use the FQDN in multi ESM