Which administrator type utilizes predefined roles for a local administrator account?
Which administrator type utilizes predefined roles for a local administrator account?
Role-based administrators utilize predefined roles for local administrator accounts. By setting a role, you define the specific privileges and access controls for each administrator. This method ensures a systematic approach to managing different access levels within the system.
Let's take a minute to appreciate this question's implicit lambasting of PA's naming conventions.
C is correct
C is Correct. In Palo Alto thre are only 2 Admin types. Admin can be created as either DYNAMIC or Role-based, role-based means you decide what priviledges your admin will have so it's custom. Dynamic includes predefined admin profiles such as Superuser + Superuser(RO), VirtSys + VirtSys(RO), etc
https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/firewall-administration/manage-firewall-administrators/administrative-role-types.html#id8b324bf1-eac8-40e1-82d5-6f82ff761fa9
Dynamic refers to how when the firewall is updated with new features, new screens etc, the priviledges are automatically updated. With role based profiles, when a new feature is added the administrator must go into the profile and manually update it to include the new feature.
https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/firewall-administration/manage-firewall-administrators/administrative-role-types
C. Dynamic12 Dynamic roles are built-in roles that provide access to the firewall1. When new features are added, the firewall automatically updates the definitions of dynamic roles; you never need to manually update them