Is this exam completely free?

ExamCademy offers a free preview for every exam, covering around 20% of the total questions. Full access to all questions is available for free by signing up for an account. Optional supporters unlock AstroTutor (AI tutor) and advanced study modes.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! ExamCademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our practice questions are community-created and moderator-reviewed to align with realistic exam objectives, style, and difficulty.

PSE-SASE by Palo Alto Networks - Page 1 | ExamCademy

Mode Selection

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

That's the end of the Preview

Create a free account to unlock all questions for this exam.

Log In / Sign Up

Page 1 of 4 • Questions 1-25 of 84

1 2 3 4

→

Know a question that should be here? Contribute to this exam

A customer currently uses a third-party proxy solution for client endpoints and would like to migrate to Prisma Access to secure mobile user internet-bound traffic.
Which recommendation should the Systems Engineer make to this customer?

A With the explicit proxy license add-on, set up GlobalProtect.
B With the mobile user license, set up explicit proxy.
C With the explicit proxy license, set up a service connection.
D With the mobile user license, set up a corporate access node.

In which step of the Five-Step Methodology of Zero Trust are application access and user access defined?

A Step 4: Create the Zero Trust Policy
B Step 3: Architect a Zero Trust Network
C Step 1: Define the Protect Surface
D Step 5: Monitor and Maintain the Network

A company is looking for a new security solution to secure their workforce. They have 2,000 users distributed throughout the United States, Canada, and Europe. They have no physical offices, but do have four data centers deployed in AWS and GCP which host private applications. Their CIO wants to make sure the workforce can connect securely to both SaaS and private applications and ensure a good end user experience.

Which licensing model would best fit this scenario?

A Local Enterprise
B Worldwide Enterprise
C Business
D Business Premium

What does the combined Mobile Users and Remote Networks SKU include?

A One mobile user license AND 1 Mbps remote network bandwidth
B One mobile user license OR 1 Mbps remote network bandwidth
C One mobile user license with no Mbps remote bandwidth
D One MBPS remote network bandwidth with no mobile user licenses

How does Prisma Access enhance visibility and control over SaaS applications?

A Through SaaS Security Posture Management (SSPM)
B By employing Content Delivery Network (CDN) capabilities
C Through centralized logging in Strata Logging Service
D By using AIOps for SASE

Where can the health of an application for monitored users be found?

A Dashboards --> Application Health
B Incidents & Alerts --> Log Viewer --> Application Experience Score
C Incidents & Alerts --> Log Viewer --> Application Health
D Insights --> SD-WAN Applications

When licensing Prisma Access, how many service connections are standard with Business Premium?

A 0
B 1
C 2
D 5

In the aggregate model, how are bandwidth allocations and interface tags applied beginning in Prisma Access 1.8?

A License bandwidth is allocated to a CloudGenix controller; interface tags are set with a compute region.
B License bandwidth is allocated to a compute region; interface tags are set with a CloudGenix controller.
C License bandwidth is allocated to a compute region; interface tags are set with a Prisma Access location.
D License bandwidth is allocated to a Prisma Access location; interface tags are set with a compute region.

A current Prisma SASE customer has recently onboarded several new SaaS applications, and they are concerned about their security posture regarding administrative settings. The IT team does not have experience with these applications, and is unsure what the best base security settings would be.

Which product would fit the customer's needs?

A IoT Security
B Prisma SD-WAN
C SSPM
D SaaS Security

Which three decryption methods are available in a security processing node (SPN)? (Choose three.)

A SSL Outbound Proxy
B SSHv2 Proxy
C SSL Forward Proxy
D SSL Inbound Inspection
E SSH Inbound Inspection

A prospective Prisma Access customer has a requirement to allow their remote developers access to their local branch offices.

Which add-on is needed to allow users to branch office access?

A GlobalProtect
B Explicit proxy
C Next Generation CASB
D Net Interconnect license

Which feature of Prisma SD-WAN helps reduce operational complexity?

A AIOps for SASE
B URL Filtering
C Auto VPN
D SD-WAN Edge

Which App Response Time metric measures the amount of time it takes to transfer incoming data from an external server to a local client?

A UDP Response Time (UDP-TRT)
B Server Response Time (SRT)
C Network Transfer Time (NTTn)
D Round Trip Time (RTT)

Which two prerequisites must an environment meet to onboard Prisma Access mobile users? (Choose two.)

A Zoning must be configured to require a user ID for the mobile users trust zone.
B Mapping of trust and untrust zones must be configured.
C BGP must be configured so that service connection networks can be advertised to the mobile gateways.
D Mobile user subnet and DNS portal name must be configured.

How does SaaS Security Inline help prevent the data security risks of unsanctioned security-as-a-service (SaaS) application usage on a network?

A It provides mobility solutions and/or large-scale virtual private network (VPN) capabilities.
B It offers risk scoring, analytics, reporting, and Security policy rule authoring.
C It provides built-in external dynamic lists (EDLs) that secure the network against malicious hosts.
D It prevents credential theft by controlling sites to which users can submit their corporate credentials.

Which two point products are consolidated into the Prisma secure access service edge (SASE) platform? (Choose two.)

A Autonomous Digital Experience Management (ADEM)
B firewall as a service (FWaaS)
C Threat Intelligence Platform (TIP)
D security information and event management (SIEM)

Which element of Prisma Access enables both mobile users and users at branch networks to access resources in headquarters or a data center?

A User-ID
B private clouds
C App-ID
D service connections