Free Palo Alto Networks PSE-Endpoint Exam Dumps and PSE-Endpoint Exam Questions

Question No: 21

MultipleChoice

An administrator is testing an exploit that is expected to be blocked by the JIT Mitigation EPM protecting the viewer application in use. No prevention occurs, and the attack is successful.

In which two ways can the administrator determine the reason for the missed prevention? (Choose two.)

Options

ACheck in the HKLM\SYSTEM\Cyvera\Policy registry key and subkeys whether JIT Mitigation is enabled for this application

BCheck if a Just-In-Time debugger is installed on the system

CCheck that the Traps libraries are injected into the application

DCheck that all JIT Mitigation functions are enabled in the HKLM\SYSTEM\Cyvera\Policy\Organization\Process\Default registry key

Question No: 22

MultipleChoice

An administrator is installing ESM Core 4.0. The SQL Server is running on a non-standard port (36418). The database connection validation is failing. The administrator has entered the following information:

Server Name: ServernameInstance

Database: TrapsDB

User Name: DomainAccount

What is causing the failure?

Options

AThe database name 'TrapsDB' is unsupported

BThe instance name should not be specified

CThe non-standard port needs to be specified in the format TrapsDB,36418

DThe destination port cannot be configured during installation

Question No: 23

MultipleChoice

An administrator can check which two indicators to verity that Traps for Mac is running correctly on an installed endpoint? (Choose two.)

Options

AUse cytool from the command line interface to display the running Traps agent services.

BIn the Activity Monitor, verify that CyveraSecvice is running

CPing other Traps agents from the macOS agent

DVerity that the Traps agent icon is displayed on the macOS finder bar.