Which two methods can be used to verify firewall connectivity to AutoFocus? (Choose two.)
Which two methods can be used to verify firewall connectivity to AutoFocus? (Choose two.)
To verify firewall connectivity to AutoFocus, you can use the test command in the CLI to directly check the connectivity status, which provides a reliable method for checking the link to AutoFocus. Additionally, the WebUI Dashboard AutoFocus widget offers a visual confirmation and ongoing status of the connection, making both these methods suitable for confirming connectivity.
DE https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/threat-prevention/learn-more-about-and-assess-threats/assess-firewall-artifacts-with-autofocus/enable-autofocus-threat-intelligence.html
Seems this question may be outdated https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-admin/threat-prevention/learn-more-about-and-assess-threats/assess-firewall-artifacts-with-autofocus/enable-autofocus-threat-intelligence.html steps 1 and 2 describe D and E to enable autofocus. steps 4 is the answer: "Test the connection between the firewall and AutoFocus.: -On the firewall, select Monitor>Logs>Traffic. -Verify that you can Assess Firewall Artifacts with AutoFocus." But no answers to select for those...
A seems possible if one has the destination IP information but would only check L3/L4 Why not B? For example the autofocus dashboard alerts widget which presumably wouldn't have any alerts if the firewall were not connected to autofocus? https://docs.paloaltonetworks.com/autofocus/autofocus-admin/autofocus-alerts/view-alerts-in-autofocus#id988b3d9f-7526-4ec6-9ece-e7e4e70b6156 C these logs are presumably not visible to us as they're PAN cloud to PAN cloud? D seems this would only confirm firewall to portal connectivity for license activation E doesn't check connectivity Overall a poorly worded question. I agree DE are steps to connecting and are maybe best but maybe AB are possible to actually 'verify connectivity' ?
license is the most important. You can't use AutoFocus without license.
I would prefer A and E.
test commands are used to verify whether a particular traffic would pass, get blocked or finally how it would be recognized by the firewall. I think "test' would a last resort and out of scope.
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/threat-prevention/learn-more-about-and-assess-threats/assess-firewall-artifacts-with-autofocus/enable-autofocus-threat-intelligence#id9ac4f191-abbf-4483-8a43-57bc137038ce
D and E appear to be correct
Sorry to all of you, but only A & B check the well connectivity with Auto Focus :) Good luck