Examice

Exam PSE Strata All QuestionsBrowse all questions from this exam

Go to Exam

Question 99

Which three of the following are identified in the Best Practice Assessment tool? (Choose three.)

use of device management access and settings

use of decryption policies

presence of command-and-control (C2) sessions

identification of sanctioned and unsanctioned software-as-a-service (SaaS) application

measurement of the adoption of URL filters, App-ID, and User-ID

Correct Answer: A, B, E

The Best Practice Assessment (BPA) tool typically identifies the use of device management access and settings, evaluates the implementation of decryption policies, and measures the adoption of key security features such as URL filtering, App-ID, and User-ID. These factors are crucial in ensuring that best practices in security configurations are followed. It does not, however, identify command-and-control sessions or sanctioned and unsanctioned software-as-a-service applications, which are more related to real-time traffic analysis and monitoring.

Discussion

f143c37Options: ABE

It's ABE. BPA checks configuration, not traffic logs and therefore doesn't know about which SaaS apps are sanctioned or not - D is not correct.

hifumi_daisukiOptions: ABE

Same as Q13 https://www.examtopics.com/discussions/palo-alto-networks/view/84152-exam-pse-strata-topic-1-question-13-discussion/

RobesqueOptions: ABE

It is ABE.

ArangoTopicsOptions: BDE

This question is the same Question #13. A is incorrect in this one. https://docs.paloaltonetworks.com/best-practices/10-2/best-practices-getting-started/get-started-with-best-practices/security-assurance