Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.

Palo Alto Networks PCNSE Exam

Certification Provider: Palo Alto Networks
Exam: Palo Alto Networks Certified Network Security Engineer
Duration: 2 Hours
Number of questions in the database: 266
Exam Version: June 14, 2022
Exam Topics:
  • Topic 1: Single Topic
Palo Alto Networks PCNSE Comments:
PAUGURU
Highly Voted 1 year, 5 months ago
Passed exam today, just more or less 8 new questions, the one I can recall are: - Format of Panorama template variables -> $Panorama - why on panorama in health monitor some entries are in red -> deviations from 7 day average treshold - USB bootstrap file on NTFS filesystem not working -> unsupported filesystem - wildfire file type with basic subscription -> question present here but has different options, I had 4: vbs, bat, pe, eps Good luck
upvoted 14 times
...
NLT
Highly Voted 3 months, 4 weeks ago
Today( Mar 02, 2022), I passed PCNSE. First, I would like to say Thanks a million to ExamTopics admins and contributors. I learned many stuffs and correct answers from here within discussions. But you cannot rely on only ExamTopics to take PCNSE. According to my experience today, I saw 70 to 75 % of the questions from here in real exam.For others, I would like to suggest CertLibrary.com website premium file for PCNSE which includes most valid questions. But again, don’t blindly believe the answers from there as well since it is mixed many wrong answers with correct ones. You need to verify the answers by referencing Palo Alto official docs.
upvoted 11 times
...
TONNHAN779
Most Recent 1 month ago
You need to allow users to access the office-suite application of their choice. How should you configure the firewall to allow access to any office-suite application? A. Create an Application Group and add Office 365, Evernote Google Docs and Libre Office B. Create an Application Group and add business-systems to it. C. Create an Application Filter and name it Office Programs, then filter it on the office programs subcategory. D. Create an Application Filter and name it Office Programs then filter on the business-systems category.
upvoted 2 times
funmax
3 weeks, 5 days ago
I think it is C
upvoted 4 times
...
...
Makaveli1
1 month, 3 weeks ago
I passed the exam Today (May 4), as it was already shared around 60-70% of the question are from here.
upvoted 2 times
...
Jheax
1 month, 4 weeks ago
I passed today (May 5, 2022). I agree with NTL, you cannot rely on ExamTopics alone to pass it. ExamTopics should be used to test yourself and check what areas you need improvement. I would suggest having some real-life experience before you try it. Best of luck to anyone that is going to take this test in the days to come.
upvoted 3 times
...
Alessandr0
2 months ago
152.Cortex XDR notifies an administrator about grayware on the endpoints. There are no entnes about grayware in any of the logs of the corresponding firewall. Which setting can the administrator configure on the firewall to log grayware verdicts? 1- in Threat General Settings, select “Report Grayware Files” 2- in Wildfire General Settings, select “Report Grayware Files” 3- within the log forwarding profile attached to the Security policy rule 4- within the log settings option in the Device tab
upvoted 2 times
Alen
1 month, 3 weeks ago
2 is the answer https://docs.paloaltonetworks.com/wildfire/10-0/wildfire-admin/monitor-wildfire-activity/use-the-firewall-to-monitor-malware/configure-wildfire-submissions-log-settings/enable-logging-for-benign-and-grayware-samples
upvoted 1 times
...
calibre
1 month, 1 week ago
i think 2. only wildfire have that option for grayware
upvoted 3 times
GeoGR2022
3 weeks, 4 days ago
Device->Setup->WildFire and then check the "Report Grayware Files" option: When this option is enabled (disabled by default), files analyzed by WildFire that are determined to be grayware will appear in the Monitor > WildFire Submissions log. Note: Even if this option is enabled on the firewall, email links that WildFire determines to be grayware will not be logged because of the potential quantity of links processed. Value: Enable reporting grayware files to log session information, network activity, host activity, and other information that helps with analytics.
upvoted 1 times
...
...
...
Alessandr0
2 months ago
What would allow a network security administrator to authenticate and identify a user with a new BYOD-type device that is not joined to the corporate domain? A . a Security policy with "known-user” selected in the Source User field B . an Authentication policy with "known-user” selected in the Source User field C . an Authentication policy with ‘unknown’ selected in the Source User field D . a Security policy with “unknown” selected in the Source User field
upvoted 1 times
GeoGR2022
3 weeks, 3 days ago
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-web-interface-help/policies/policies-authentication/building-blocks-of-an-authentication-policy-rule known-user: Includes all users for whom the firewall already has IP address-to-username mappings before the rule evokes authentication.
upvoted 2 times
...
melek18
1 month ago
C in my opinion
upvoted 1 times
aalz
4 weeks, 1 day ago
Are you sure it is not A ?
upvoted 2 times
...
...
...
betko
2 months ago
Just to let everyone know: "We are currently updating the PCNSE exam. The new exam will be live in May 2022. Candidates should reference this Blueprint for the upcoming exam." https://www.paloaltonetworks.com/content/dam/pan/en_US/assets/pdf/datasheets/education/pcnse-blueprint-future.pdf https://www.paloaltonetworks.com/services/education/certification Looks like this is the reason for all new questions...
upvoted 1 times
...
betko
2 months ago
When you navigate to Network: > GlobalProtect > Portals > Method section, which three options are available? (Choose three) A . user-logon (always on) B . pre-logon then on-demand C . on-demand (manual user initiated connection) D . post-logon (always on) E . certificate-logon A, B, C Checked on my PA.
upvoted 5 times
...
betko
2 months ago
In an HA failover scenario what occurs when sessions match an SSL Forward Proxy Decryption policy? A . HA Sync does not occur the existing session is transferred to the active firewall. B . HA Sync does not occur the firewall drops the session. C . HA Sync occurs the session is sent to testpath D . HA Sync occurs the firewall allows the session Put does not decrypt the session. B? https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/decryption/decryption-concepts/decryption-and-high-availability
upvoted 3 times
Alen
1 month, 3 weeks ago
B is correct
upvoted 1 times
...
...
betko
2 months ago
An administrator is attempting to create policies tor deployment of a device group and template stack When creating the policies, the zone drop down list does not include the required zone. What must the administrator do to correct this issue? A . Specify the target device as the master device in the device group B . Enable "Share Unused Address and Service Objects with Devices" in Panorama settings C . Add the template as a reference template in the device group D . Add a firewall to both the device group and the template
upvoted 1 times
ManKing36
1 month, 2 weeks ago
it should be C Ref. - https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PNfeCAG
upvoted 3 times
...
...
betko
2 months ago
A network-security engineer attempted to configure a bootstrap package on Microsoft Azure, but the virtual machine provisioning process failed. In reviewing the bootstrap package, the engineer only had the following directories: /config, /license and /software Why did the bootstrap process fail for the VM-Series firewall in Azure? A . All public cloud deployments require the /plugins folder to support proper firewall native integrations B . The /content folder is missing from the bootstrap package C . The VM-Series firewall was not pre-registered in Panorama and prevented the bootstrap process from successfully completing D . The /config or /software folders were missing mandatory files to successfully bootstrap B https://docs.paloaltonetworks.com/vm-series/10-1/vm-series-deployment/bootstrap-the-vm-series-firewall/bootstrap-the-vm-series-firewall-in-azure "Add content folders within each folder. You can leave a folder empty but you must have all four folders (config, license, software and content) in the parent folder."
upvoted 3 times
...
betko
2 months ago
An administrator needs to build Security rules in a Device Group that allow traffic to specific users and groups defined in Active Directory. What must be configured in order to select users and groups for those rules from Panorama? A. The Security rules must be targeted to a firewall in the device group and have Group Mapping configured. B. A master device with Group Mapping configured must be set in the device group where the Security rules are configured. C. User-ID Redistribution must be configured on Panorama to ensure that all firewalls have the same mappings. D. A User-ID Certificate profile must be configured on Panorama.
upvoted 1 times
Alessandr0
3 weeks, 1 day ago
Why it can't be A? https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClIOCA0 CONFIGURING GROUP MAPPINGS ON FIREWALLS USING PANORAMA WITHOUT THE MASTER DEVICE.
upvoted 1 times
...
Jury
1 month ago
i think answer is C
upvoted 1 times
...
poiuytr
2 months ago
Answer: B Crucial in this question is group-mapping, which can't be redistributed as ip-to-username to Panorama, where you set rules.
upvoted 3 times
...
...
betko
2 months ago
When using certificate authentication for firewall administration, which method is used for authorization? A. Radius B. LDAP C. Kerberos D. Local Suggest Answer: C I am not sure if answer is correct!
upvoted 2 times
merin2016
2 months ago
is it D per this -> https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/firewall-administration/manage-firewall-administrators/configure-administrative-accounts-and-authentication/configure-certificate-based-administrator-authentication-to-the-web-interface
upvoted 3 times
...
poiuytr
2 months ago
When you use cert for authentication connecting web UI you need to have admin defined locally on machine (Device - Administrators). In the same tab you have "role" = authorization, so in my opinion: answer: D
upvoted 3 times
...
...
betko
2 months, 1 week ago
Any idea for this one? I can't find any documentation at all. A prospect is eager to conduct a Security Lifecycle Review (SLR) with the aid of the Palo Alto Networks NGFW. Which interface type is best suited to provide the raw data for an SLR from the network in a way that is minimally invasive? A. Layer 3 B. Virtual Wire C. Tap D. Layer 2 Tap maybe?
upvoted 2 times
TMoose
2 months ago
Believe they do a tap with SLR, makes sense
upvoted 2 times
poiuytr
2 months ago
Yes, probably TAP, because "prospect", so he would like to buy PA (and doesn't have it already), so he wants to send data TO firewall. However, usually in PoC Virtual wire is used for "inline" monitoring.
upvoted 2 times
...
...
...
MohamadSameeullah
2 months, 2 weeks ago
Passed the PCNSE exam on Friday (15/Apr/2022). Around 60% of the questions here were on the exam. Yes, a lot of SSL decryption questions as @Mp84047 said. And few new questions that @Mp84047 has posted here. By the way, I just organized some new questions on GDocs for free: https://docs.google.com/document/d/1Xt_c8bnxGGrnX1pu14oucyPokg80OKzkISWEZ_oafDY/ Goood luck!
upvoted 8 times
Rider85
2 months, 1 week ago
Thank you very much for your contribution, it is good for those of us who are going to examine ourselves in a few days. The questions that I see that are not here I will share with the community.
upvoted 1 times
betko
2 months ago
Be aware, in his word file, there are mostly wrong answers.
upvoted 1 times
Rider85
2 months ago
Last Wednesday I passed the exam following the questions on this list in addition to those published by MohamadSameeullah reviewing the answers that as betko indicates there are some that are not right.
upvoted 1 times
...
...
...
...
Mp84047
2 months, 3 weeks ago
Passed the exam today, many of the questions I posted here were on the exam. About 60% of the questions here were on the exam. Saw a a lot of SSL decryption questions so make sure you know it inside and out before taking the test. Good Luck!
upvoted 2 times
...

Get ready to prepare like you’ve never prepared before

As we often say at ExamTopics, work smarter not harder. You are about to see a study guide that took hours of hard collection work, expert preparation, and constant feedback. That’s why we know this exam prep will help you get that high-score on your journey to certification. Our study guides are the real thing. Our study guides are so accurate, we have to fight the droves of clone test prep sites that actually steal our material. Don’t worry though, we believe by offering our material free and upholding good values, ExamTopics will always have a strong community and a coveted place in the certification world.

Your journey to pass the PCNSE

Perhaps this is your first step toward the certification, or perhaps you are coming back for another round. We hope that you feel this exam challenges you, teaches you, and prepares you to pass the PCNSE. If this is your first study guide, take a moment to relax. This could be the first step to a new high-paying job and an AMAZING career. If you’ve been around the block a few times, consider taking a moment and answering some questions from newer techies. After all, it’s our great community that illuminates the material and helps build something great.

What should you know before studying the PCNSE?

Every exam and certification has different requirements. If this is a serious venture, make sure to read the prerequisites before preceding. Nothing is worse than wasting months studying for an exam you can’t take or passing an exam that won’t help you get a certification! Our easy search tools are designed to help you find relevant information as well and search for a variety of different exams.

What is the PCNSE focused on?

The PCNSE or as it’s also known, the Palo Alto Networks Certified Network Security Engineer, like all tests, there is a bit of freedom on Palo Alto Networks's part to exam an array of subjects. That means knowing the majority of PCNSE content is required because they test randomly on the many subjects available. Be aware too that experience requirements often exist because they’ve observed the average person and what is required. You can always push past that to succeed with the PCNSE but it may take some extra work.

Rome wasn’t built in a day

Remember that incredible things take time. And just like ancient monuments took years of effort, certification is not easy. It is not always quick either. But it is worth it! Our toolset allows you to engage with an incredible community of expert tech workers and add to the conversation at ExamTopics. If you have questions, don’t forget to leave a comment and reach out. It’s here that you’ll get personalized help unheard of on test prep sites, without the outrageous fees.

Always check the foundation

Some certifications have requirements going back to older exams, while others use two or more tests to help someone pass. If you find the PCNSE is over your head, that’s ok. It might make sense to see if a lower level exam will give you some clarity.

If offered, read the exam objectives

The exam objectives are different for every single exam and usually provided by the certification provider. These normally tell the test taker what subjects are relevant, what they need to know, and why the exam seeks to cover these topics. It’s important to find them out for your specific exam. This can be found on nearly every vendor website and greatly informs the way you’ll study! Don’t worry though, we have taken those objectives into account and seek to create a testing experience comparable to an actual exam.

Remember that certification is quite rewarding

It can be hard to keep your focus on studying but remember that the best jobs in the world are only a few tests away. Whether you enter Cyber Security or do entry level tech work, certification is a clear, learnable, and rewarding path to careers that pay a LOT of money. They offer better work-life balance and you’ll get in with some of the major leaders in the business world. So don’t give up, it is worth it, and all this work will pay off!

Using ExamTopics

Practicing for an exam like the PCNSE can be a full-time job. In fact some exams are actually paid for by work because they are so intensive. Certification is not simple and takes immense work. It takes time, practice, and the right focus. We here at ExamTopics understand that. We understand that because we have been in this industry for years and working in space full of less savory test prep sources. These terrible prep sources pushed our team to make a positive change in the Exam space. We got sick and tired of seeing potential exam candidates get price-gouged over CCNA braindumps. We couldn’t handle knowing that hard workers from across the world, seeking new skills and a better life, get tricked into paying absurd amounts for low-quality exam materials. Often material that was out of date or at best, available online through community sites without hurting the wallet. And it had to stop. You are ready to jump in!

That’s it, the next page will be full of practice questions. Challenging material. And best of all, a chance to hone your skills. It’s ok if you feel in over your head. We all did at some point, this next step is about pushing through that fear and getting ready to tackle something as challenging as the PCNSE. If you get stuck, reach out. If you see others stuck, help them. And as always, like we love to say, work smarter NOT harder!

Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...