exam questions

Exam PCNSE All Questions

View all questions & answers for the PCNSE exam

Exam PCNSE topic 1 question 114 discussion

Actual exam question from Palo Alto Networks's PCNSE
Question #: 114
Topic #: 1
[All PCNSE Questions]

Which data flow describes redistribution of user mappings?

  • A. User-ID agent to firewall
  • B. Domain Controller to User-ID agent
  • C. User-ID agent to Panorama
  • D. firewall to firewall
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
CiscoNinja
Highly Voted 4 years, 1 month ago
D - Firewall to firewall or Firewall to Panorama
upvoted 13 times
...
cipri86
Highly Voted 3 years, 5 months ago
D - Firewall to Firewall https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/redistribute-user-mappings-and-authentication-timestamps/firewall-deployment-for-user-id-redistribution.html#ide3661b46-4722-4936-bb9b-181679306809
upvoted 8 times
...
Marshpillowz
Most Recent 5 months ago
Selected Answer: D
D is correct
upvoted 1 times
...
ChiaPet75
10 months, 1 week ago
PCNSE Study Guide 2023 1.4.4 Firewalls share user mappings and authentication timestamps as part of the same redistribution flow; you do not have to configure redistribution separately for each information type.
upvoted 1 times
...
TAKUM1y
1 year, 9 months ago
Selected Answer: D
https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/redistribute-user-mappings-and-authentication-timestamps/firewall-deployment-for-user-id-redistribution#ide3661b46-4722-4936-bb9b-181679306809
upvoted 2 times
...
UFanat
2 years ago
Selected Answer: D
Should be D
upvoted 2 times
...
tururu1496
2 years, 3 months ago
Selected Answer: D
Answer: D (https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/redistribute-user-mappings-and-authentication-timestamps/firewall-deployment-for-user-id-redistribution.html)
upvoted 3 times
...
lmla89
2 years, 5 months ago
Selected Answer: D
D is correct
upvoted 4 times
...
fxgoat98
3 years ago
correct answer is D
upvoted 4 times
...
GBD
3 years, 9 months ago
A..from the PCNSE study guide revised Aug 2020 To map IP addresses to usernames, User-ID agents monitor sources such as directory servers. The agents send the user mappings to firewalls, Log Collectors, or Panorama. Each appliance then can serve as redistribution points that forward the mappings to other firewalls, Log Collectors, or Panorama. Before a firewall or Panorama can collect user mappings, you must configure its connections to the User-ID agents or redistribution points. More information about this topic can be found here: https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-web-interface
upvoted 2 times
jpm_1506
3 years, 6 months ago
"The agents send the user mappings to firewalls, Log Collectors, or Panorama." so far not redistribution - just collection... then it says "Each appliance then can serve as redistribution points that forward the mappings to other firewalls, Log Collectors, or Panorama." so for it to be considered as redistribution it has to come from a firewall, panorama, or log collector. taht only leaves option "D" as an option as its the only one that sources userID from a fw, panorama ,or log collector.
upvoted 6 times
...
...
GBD
3 years, 9 months ago
User-ID agent can be on a firewall or it can be on a Windows server, so I believe that the answer is A
upvoted 1 times
...
cthd
3 years, 11 months ago
D. Redistribution supported only on FW, Log Collector, and Panorama
upvoted 1 times
...
maylinn
4 years ago
https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/dita/_graphics/7-1/user-id/User-ID_Redistribution.png D is correct
upvoted 1 times
...
ChiaPet75
4 years ago
This one is a little confusing but I do believe that the right answer is "A". Step 3-1 says "Configure the firewall to function as a User-ID agent. If redistribution enables the firewall to function as a User-ID agent for other devices then the correct data flow would be "User-ID agent to firewall" The answer is A https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/configure-firewalls-to-redistribute-user-mapping-information/configure-user-id-redistribution.html#idc123940a-367d-4515-b45e-29c1d0aa2bd1 In later version of the PANOS documentation it doesn't mention configuring the firewall as a User-Id agent specifically but all the configuration for redistribution is done within the User-ID agent configuration itself. See Step 1-3 in the doc link below. https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/redistribute-user-mappings-and-authentication-timestamps/configure-user-id-redistribution
upvoted 3 times
...
rammsdoct
4 years, 1 month ago
D. if it was collection of user ID it would be A, but instead is redistritbution. check example below. https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/user-id/deploy-user-id-in-a-large-scale-network/configure-firewalls-to-redistribute-user-mapping-information/firewall-deployment-for-user-id-redistribution.html#id127bc778-ffec-49c4-a9b2-5cf7b044be6e
upvoted 4 times
...
Ab121213
4 years, 1 month ago
https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-web-interface-help/user-identification/device-user-identification-user-mapping/user-id-agent-setup/user-id-agent-setup-redistribution.html
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago