[2023年05月08日]Palo Alto Networks PCSAEリアル試験問題と解答を無料で提供いたします
合格できるPalo Alto Networks PCSAE試験情報と無料練習テスト問題
PCSAE認定試験は、セキュリティオートメーションに関する候補者の知識とスキルを評価する厳しい試験です。試験は120分以内に完了しなければならない80の多肢選択問題から構成されています。試験は、ファイアウォールポリシー、セキュリティポリシー、ネットワークセキュリティ、および脅威予防などのトピックをカバーしています。試験の合格基準は70%であり、試験に合格した候補者はPCSAE認定を受けます。
この試験は、セキュリティソリューションの主要な提供者であるPalo Alto Networksによって実施されています。Palo Alto Networksは、世界中の組織に利用される高品質のセキュリティソリューションを提供することで評判があります。PCSAE認定は、同社が高品質のセキュリティソリューションを提供することへの取り組みと、今日の高速なデジタル世界におけるセキュリティ自動化の重要性を示すものです。
質問 # 85
Which three actions can an engineer take on the troubleshooting page? (Choose three.)
- A. Export and import custom content
- B. Put the XSOAR server in maintenance mode
- C. View and modify server configuration settings
- D. Download the debug log bundle
- E. View a list of server administrators
正解:B、C、D
質問 # 86
The default expiration method for non-feed indicators is either to never expire or to expire after a specific period of time. How frequently does XSOAR check tor newly expired indicators?
- A. Every 24 hours
- B. Every 8 hours
- C. Every 5 minutes
- D. Every 1 hour
正解:D
質問 # 87
Which two options will troubleshoot an integration's fetch incidents command? (Choose two.)
- A. In the instance settings, enable the fetch incidents parameter and wait for one minute
- B. execute !<integration_name>-fetch
- C. Create a one task playbook with a fetch-incident command
- D. execute !<integration_instance_name>-fetch
正解:A、D
質問 # 88
An engineer wants to customize the regex for the default IP indicator type. How can this change be implemented?
- A. Add a new server configuration key that will overwrite the default regex of the IP indicator
- B. Edit the regex of the default IP Indicator
- C. Delete the default IP indicator
- D. Create a new indicator type and disable the built-in IP indicator
正解:D
質問 # 89
What is the most effective way to correlate multiple raw events coming from a SIEM and link them together?
- A. Configure a pre-process rule to link related events as they are ingested
- B. Ingest all raw events, run a custom script to find the relationship between them and proceed to link them together
- C. Process all alerts by running the respective playbook and link related incidents during post-processing
- D. Manually go through the incidents created by the raw events and link related incidents
正解:A
質問 # 90
Which field type should be used to hold more than 60,000 characters of unformatted text?
- A. Long Text
- B. Markdown
- C. HTML
- D. Short Text
正解:A
質問 # 91
In which two options can an automation script be executed? (Choose two.)
- A. Playbook
- B. Engine
- C. Integration
- D. War room
正解:A、D
質問 # 92
Which two methods will allow data to be saved in incident fields within a playbook? (Choose two.)
- A. Layout inline editing
- B. Field mapping
- C. setIncident
- D. setFields
正解:B、C
質問 # 93
Match the appropriate action to the layout type.
正解:
解説:
質問 # 94
Which three statements are true about the Marketplace? (Choose three.)
- A. Enables users to participate in the community by sharing content
- B. Allows reverting back to a previous version of a content pack
- C. Allows uploading of content in additional languages
- D. Publishes content without additional review from the Cortex XSOAR team
- E. Offers granularity in installation through content packs
正解:A、B、E
質問 # 95
Which of the following is a prerequisite to editing out-of-the-box (OOTB) content?
- A. Go to Settings > About >Troubleshooting and set a flag to allow custom content.
- B. Download the content from the Marketplace.
- C. Register a user account with support.paloaltonetworks.com .
- D. Detach the content item you want to edit from the Marketplace.
正解:A
質問 # 96
An administrator has noticed that an integration has failed to fetch incidents. Where would they go to download logs to troubleshoot the error?
- A. Settings > About > Troubleshooting > Set Log Level to Debug > Download Logs
- B. Dashboards & Reports > System Health
- C. Settings > About > System Diagnostics
- D. Go to the Marketplace > Download the Fix my XSOAR playbook pack > Run the playbook > Download logs from War Room
正解:A
質問 # 97
An engineer defined a dashboard which allows important metrics to be displayed. The engineer would like to make this dashboard the default dashboard.
How can it be accomplished?
- A. Default Dashboard can be defined by 'Role'
- B. Use the server configuration key: default.dashboards
- C. Save the dashboard as a widget and apply it to all users
- D. Right click on the dashboard tab and 'Set as Default'
正解:A
質問 # 98
Which two components have their own context data? (Choose two.)
- A. Incident
- B. Field
- C. Task
- D. Sub-playbook
正解:A、D
質問 # 99
A playbook task generates a report as HTML in the context data.
An engineer creates a custom indicator field of type "HTML" and adds the field to a section in a custom indicator layout. How can the engineer populate the HTML field in the indicator layout?
- A. Add HTML to a list using !setList and use it as an HTML template to populate the custom indicator field.
- B. Use the Mapping option in the playbook task that generates the HTML report to populate the custom indicator field.
- C. Populate the custom indicator field with the built-in !SetIndicator command.
- D. Create a custom Indicator Mapper and populate the custom indicator field.
正解:B
質問 # 100
Which three options can be defined in the layout settings? (Choose three.)
- A. Delete built-in tabs including the war room
- B. Permission to view the tab based on 'Users'
- C. Dynamic sections
- D. Permission to view the tab based on 'Roles'
- E. Set of fields to present
正解:C、D、E
質問 # 101
An engineer deployed two different instances of Active Directory for each organization site. As part of account enrichment use case, the engineer would like to delete a user from one specific site.
Which command will accomplish this?
- A. run 'ad-delete-user' command with 'user-dn' arg and using-brand="Active Directory Query v2"
- B. run 'ad-delete-user' command with 'user-dn' arg and using="Active Directory Query v2_instance_1"
- C. run 'ad-delete-user' command with 'user-dn' arg and raw-response=true
- D. run 'ad-delete-user' command with 'user-dn' arg and ignore-outputs=true
正解:A
質問 # 102
An engineer deployed two different instances of Active Directory for each organization site. As part of account enrichment use case, the engineer would like to delete a user from one specific site.
Which command will accomplish this?
- A. run 'ad-delete-user' command with 'user-dn' arg and using="Active Directory
- B. run 'ad-delete-user' command with 'user-dn' arg and using-brand="Active Directory Query v2"
- C. run 'ad-delete-user' command with 'user-dn' arg and raw-response=true
- D. run 'ad-delete-user' command with 'user-dn' arg and ignore-outputs=true
正解:A
解説:
Query v2_instance_1"
質問 # 103
Which two methods are used to add new content to the XSOAR Content Repository? (Choose two.)
- A. Create content and add it to the standard content by contributing through the Marketplace
- B. Use the XSOAR GitHub Contribution Guide to add the contribution to the standard content
- C. Any custom content will be automatically uploaded to the content repository
- D. Create a support ticket with the custom content for review by the support team
正解:A、C
質問 # 104
Which of the following is a basic setting that can be configured in an automation?
- A. Summary
- B. Compiler
- C. Schedule
- D. Run On
正解:C
質問 # 105
......
Palo Alto Networks PCSAE(Palo Alto Networks認定セキュリティ自動化エンジニア)認定試験は、セキュリティ自動化の分野における個人のスキルと知識を試験する認定試験です。この試験は、Palo Alto Networksテクノロジを使用してセキュリティ自動化ソリューションを開発、展開、および維持する候補者の能力を試験するように設計されています。
最新のPCSAE試験問題集でPalo Alto Networks試験が合格できます:https://www.jpntest.com/shiken/PCSAE-mondaishu