B is correct. Since you have "user=" and "group=" it means there is authentication. So, an authentication scheme must be configured. Page 120.
A is wrong. Remote_User is a "group", not a ZTNA tag. There are no ZTNA tags in the log "clientdevicetags=". Page 129 study guide.
C is worng. 10.122.0.139 is the server's real IP. Page 129. You can see this IP in the column "Real server".
D is wrong. It is not a "firewall" policy but a "proxy" policy. Page 117: ZTNA rule is a proxy policy.
Based on the ZTNA logs provided, the true statement is:
A) The Remote_user ZTNA tag has matched the ZTNA rule: The log includes a user tag 'ztna_user' and a policy name 'External_Access_FAZ', which suggests that the ZTNA tag for 'Remote_User' has successfully matched the
ZTNA rule defined in the policy to allow access.
The other options are not supported by the information in the log
I think it's A.
There is no auth scheme, otherwise you would see the "authserver=" field in the log.
The field "destip=" is the IP of the real server (backend server)
It is a proxy policy, not a firewall policy.
D is incorrect, the logs show a proxy policy not a firewall policy. Correct Answer C
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kinge2
Highly Voted 5 months, 2 weeks agolucient
Most Recent 2 months, 2 weeks agoThusi26
3 months, 3 weeks agoSolankimss
4 months, 1 week agoamarsulistio
4 months, 3 weeks agojorg_t
5 months, 2 weeks agokfaebu
5 months, 3 weeks agoOsirisdt89
6 months ago