An administrator discovers that a file blocked by the WildFire inline ML feature on the firewall is a false-positive action. How can the administrator create an exception for this particular file?
A.
Add the related Threat ID in the Signature exceptions tab of the Antivirus profile.
B.
Disable the WildFire profile on the related Security policy.
C.
Set the WildFire inline ML action to allow for that protocol on the Antivirus profile.
D.
Add partial hash and filename in the file section of the WildFire inline ML tab of the Antivirus profile.
Agree D
"The File Exceptions table allows you to define specific files that you do not want analyzed, such as false-positives.
To create a new file exception entry, Add a new entry and provide the partial hash, filename, and description of the file that you want to exclude from enforcement."
https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-web-interface-help/objects/objects-security-profiles-antivirus
Yes, D is the correct answer. https://docs.paloaltonetworks.com/wildfire/u-v/wildfire-whats-new/wildfire-features-in-panos-100/configure-wildfire-inline-ml
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.PCNSE Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
TAKUM1y
Highly Voted 1 year agooelsayed
Most Recent 9 months, 2 weeks agoconfusion
1 year agosecdaddy
1 year, 1 month agokulpaddy
1 year, 1 month ago