ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PSE Strata All Questions

View all questions & answers for the PSE Strata exam
Go to Exam

Exam PSE Strata topic 1 question 8 discussion

Actual exam question from Palo Alto Networks's PSE Strata
Question #: 8
Topic #: 1
[All PSE Strata Questions]

There are different Master Keys on Panorama and managed firewalls.
What is the result if a Panorama Administrator pushes configuration to managed firewalls?

  • A. The push operation will fail regardless of an error or not within the configuration itself
  • B. Provided there's no error within the configuration to be pushed, the push will succeed
  • C. The Master Key from the managed firewalls will be overwritten with the Master Key from Panorama
  • D. There will be a popup to ask if the Master Key from the Panorama should replace the Master Key from the managed firewalls
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
Reference:
https://www.reddit.com/r/paloaltonetworks/comments/onz15y/what_is_the_result_if_a_panorama_administrator/
by freepotatoes at March 9, 2023, 11:07 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
admripper
1 week ago
Selected Answer: B
The correct answer is: B. Provided there's no error within the configuration to be pushed, the push will succeed. Explanation: The Master Key on Panorama and managed firewalls does not affect the ability to push configuration changes. Panorama uses secure communication channels to manage firewalls, but the Master Key is specific to encrypting sensitive data (such as passwords and private keys) within a device. As long as there are no configuration errors, Panorama can push configurations successfully, even if the Master Key values differ between Panorama and the managed firewalls. However, the Master Key settings themselves are not pushed from Panorama to the managed firewalls during configuration pushes.
upvoted 1 times
...
44d0262
4 months, 3 weeks ago
A is correct. No, this would not result in a commit error. The study guide mentions that "Administrators can commit or revert changes they make in a Panorama configuration independently of changes made by other administrators." This means that even if the master keys are not synced, the configuration push itself will not fail. The only issue would be that encrypted settings would not be updated. The commit would be successful, but the desired changes to the encrypted settings would not take effect on the managed firewalls until the master keys are synced.
upvoted 1 times
...
freepotatoes
1 year, 9 months ago
A is correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago