Summer Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Free Paloalto Networks PSE-Cortex Practice Exam with Questions & Answers | Set: 4

Questions 31

What allows the use of predetermined Palo Alto Networks roles to assign access rights to Cortex XDR users?

Options:
A.

role-based access control

B.

cloud identity engine

C.

endpoint groups

D.

restrictions security profile

Paloalto Networks PSE-Cortex Premium Access
Questions 32

Where is the best place to find official resource material?

Options:
A.

Online forums

B.

Video series

C.

Administrator's guide

D.

Technical blogs

Questions 33

Which task setting allows context output to a specific key?

Options:
A.

extend context

B.

stop on errors

C.

task output

D.

lags

Questions 34

What should be configured for a Cortex XSIAM customer who wants to automate the response to certain alerts?

Options:
A.

Playbook triggers

B.

Correlation rules

C.

Incident scoring

D.

Data model rules

Questions 35

Which two log types should be configured for firewall forwarding to the Cortex Data Lake for use by Cortex XDR? (Choose two)

Options:
A.

Security Event

B.

HIP

C.

Correlation

D.

Analytics

Questions 36

A Cortex XSIAM customer is unable to access their Cortex XSIAM tenant.

Which resource can the customer use to validate the uptime of Cortex XSIAM?

Options:
A.

Administrator Guide

B.

LIVEcommunity

C.

Release Notes

D.

Palo Alto Networks Status Page

Questions 37

An adversary attempts to communicate with malware running on a network in order to control malware activities or to exfiltrate data from the network.

Which Cortex XDR Analytics alert will this activity most likely trigger?

Options:
A.

uncommon local scheduled task creation

B.

malware

C.

new administrative behavior

D.

DNS Tunneling

Questions 38

Which deployment type supports installation of an engine on Windows, Mac OS. and Linux?

Options:
A.

RPM

B.

SH

C.

DEB

D.

ZIP

Questions 39

How does Cortex XSOAR automation save time when a phishing incident occurs?

Options:
A.

By developing an integration.

B.

By responding to management with risk scores

C.

By purging unopened phishing email from user mailboxes

D.

By emailing staff to inform them of phishing attack in advance

Questions 40

In an Air-Gapped environment where the Docker package was manually installed after the Cortex XSOAR installation which action allows Cortex XSOAR to access Docker?

Options:
A.

create a “docker” group and add the "Cortex XSOAR" or "demisto" user to this group

B.

create a "Cortex XSOAR' or "demisto" group and add the "docker" user to this group

C.

disable the Cortex XSOAR service

D.

enable the docker service

Exam Code: PSE-Cortex
Certification Provider: Paloalto Networks
Exam Name: Palo Alto Networks System Engineer - Cortex Professional
Last Update: Jul 10, 2025
Questions: 168