ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCNSE All Questions

View all questions & answers for the PCNSE exam
Go to Exam

Exam PCNSE topic 1 question 103 discussion

Actual exam question from Palo Alto Networks's PCNSE
Question #: 103
Topic #: 1
[All PCNSE Questions]

Which prerequisite must be satisfied before creating an SSH proxy Decryption policy?

  • A. Both SSH keys and SSL certificates must be generated.
  • B. No prerequisites are required.
  • C. SSH keys must be manually generated.
  • D. SSL certificates must be generated.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by nicolasjiang at July 17, 2020, 4:28 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
MyWil
Highly Voted 4 years, 2 months ago
Per the Palo Alto URL provided: Configuring SSH Proxy does not require certificates and the key used to decrypt SSH sessions is generated automatically on the firewall during boot up. With SSH decryption enabled, all SSH traffic identified by the policy is decrypted and identified as either regular SSH traffic or as SSH tunneled traffic. SSH tunneled traffic is blocked and restricted according to the profiles configured on the firewall. Traffic is re-encrypted as it exits the firewall. Answer B is correct.
upvoted 22 times
...
Marshpillowz
Most Recent 9 months, 2 weeks ago
Selected Answer: B
B is correct
upvoted 1 times
...
TAKUM1y
2 years, 1 month ago
Selected Answer: B
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/decryption/configure-ssh-proxy
upvoted 3 times
...
UFanat
2 years, 4 months ago
Selected Answer: B
No prereq for SSH proxy
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago