What two authentication methods on the Palo Alto Networks firewalls support authentication and authorization for role-based access control? (Choose two.)

1. A. SAML
2. B. TACACS+
3. C. LDAP
4. D. Kerberos

Correct Answer: AB

What is the maximum volume of concurrent administrative account sessions?

1. A. Unlimited
2. B. 2
3. C. 10
4. D. 1

Correct Answer: C

Access to which feature requires the PAN-OS Filtering license?

1. A. PAN-DB database
2. B. DNS Security
3. C. Custom URL categories
4. D. URL external dynamic lists

Correct Answer: A

Which statement is true about Panorama managed devices?

1. A. Panorama automatically removes local configuration locks after a commit from Panorama
2. B. Local configuration locks prohibit Security policy changes for a Panorama managed device
3. C. Security policy rules configured on local firewalls always take precedence
4. D. Local configuration locks can be manually unlocked from Panorama

Correct Answer: D

You receive notification about a new malware that infects hosts An infection results in the infected host attempting to contact a command-and-control server Which Security Profile when applied to outbound Security policy rules detects and prevents this threat from establishing a command-and-control connection?

1. A. Antivirus Profile
2. B. Data Filtering Profile
3. C. Vulnerability Protection Profile
4. D. Anti-Spyware Profile

Correct Answer: D
Anti-Spyware Security Profiles block spyware on compromised hosts from trying to communicate with external command-and-control (C2) servers, thus enabling you to detect malicious traffic leaving the network from infected clients.