ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCNSE All Questions

View all questions & answers for the PCNSE exam
Go to Exam

Exam PCNSE topic 1 question 266 discussion

Actual exam question from Palo Alto Networks's PCNSE
Question #: 266
Topic #: 1
[All PCNSE Questions]

Cortex XDR notifies an administrator about grayware on the endpoints. There are no entries about grayware in any of the logs of the corresponding firewall. Which setting can the administrator configure on the firewall to log grayware verdicts?

  • A. in Threat General Settings, select "Report Grayware Files"
  • B. within the log settings option in the Device tab
  • C. in WildFire General Settings, select "Report Grayware Files"
  • D. within the log forwarding profile attached to the Security policy rule
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by nose999 at Sept. 5, 2022, 3:12 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nose999
Highly Voted 1 year, 10 months ago
Selected Answer: C
https://docs.paloaltonetworks.com/wildfire/9-1/wildfire-admin/monitor-wildfire-activity/use-the-firewall-to-monitor-malware/configure-wildfire-submissions-log-settings/enable-logging-for-benign-and-grayware-samples
upvoted 8 times
...
123XYZT
Most Recent 1 month, 1 week ago
D Log Forwarding Profile Match List Log Type: wildfire Filter verdict eq grayware
upvoted 2 times
...
1f2c588
2 months ago
answer is C: configure report graware files on the device, setup, wildfire, general setings
upvoted 1 times
...
Whizdhum
7 months ago
Selected Answer: C
Answer is C. When this option is enabled (disabled by default), files analyzed by WildFire that are determined to be grayware will appear in the Monitor > WildFire Submissions log.
upvoted 2 times
...
Sammy3637
7 months, 1 week ago
Selected Answer: C
Under Wildfire settings -->Report Grayware
upvoted 1 times
...
Sarbi
1 year, 6 months ago
Looks c is more accurate.As first we have to select report grayware . The only it will logs
upvoted 2 times
...
confusion
1 year, 8 months ago
Selected Answer: C
Definitely C, otherwise they won't be logged.
upvoted 3 times
...
TAKUM1y
1 year, 9 months ago
Selected Answer: C
https://docs.paloaltonetworks.com/wildfire/10-2/wildfire-admin/monitor-wildfire-activity/use-the-firewall-to-monitor-malware/configure-wildfire-submissions-log-settings/enable-logging-for-benign-and-grayware-samples
upvoted 3 times
...
Kuronekosama
1 year, 9 months ago
Selected Answer: D
C turn on verdicts. D turns on the logging. https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClTqCAK
upvoted 2 times
Kuronekosama
1 year, 9 months ago
Nevermind. Answer is C. It turns on logging to wildfire submissions upon report Gray ware Files.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago