Which two security profile types can be attached to a security policy? (Choose two.)
Which two security profile types can be attached to a security policy? (Choose two.)
The two security profile types that can be attached to a security policy are antivirus and vulnerability. Antivirus profiles provide protection against malware and viruses, while vulnerability profiles help detect and prevent exploitation of system vulnerabilities. DDoS protection is not typically attached to individual security policies but rather configured at a broader network level. Threat protection is more of a general category that encompasses various types of security measures including antivirus and vulnerability protection.
A and D. Threat is just the superset and DDos cannot be applied to a security rule. That needs a DDoS Protection rule
Under Policy -> Action -> Profile Setting, you can see the below options: Antivirus, Vulnerability Protection, Anti-Spyware, URL Filtering, File blocking, Data Filtering and Wildfire Analysis.
Should be A & D. https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/policy/security-profiles.html
A and B https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/policy/security-profiles
B is wrong, only relevant to Zones and hosts.
A & D is absolutely correct, I just checked in my lab: Anti-Virus Vulnerability protection DDOS & Threat - there are no such profiles.
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/policy/security-profiles
https://docs.paloaltonetworks.com/pan-os/8-0/pan-os-admin/policy/security-profiles