March Special Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 2493360325

Good News !!! PCSAE Palo Alto Networks Certified Security Automation Engineer is now Stable and With Pass Result

PCSAE Practice Exam Questions and Answers

Palo Alto Networks Certified Security Automation Engineer

Last Update 1 day ago
Total Questions : 156

PCSAE is stable now with all latest exam questions are added 1 day ago. Just download our Full package and start your journey with Paloalto Networks Palo Alto Networks Certified Security Automation Engineer certification. All these Paloalto Networks PCSAE practice exam questions are real and verified by our Experts in the related industry fields.

PCSAE PDF

PCSAE PDF (Printable)
$48
$119.99

PCSAE Testing Engine

PCSAE PDF (Printable)
$56
$139.99

PCSAE PDF + Testing Engine

PCSAE PDF (Printable)
$70.8
$176.99
Question # 1

Which two components have their own context data? (Choose two.)

Options:

A.  

Sub-playbook

B.  

Task

C.  

Field

D.  

Incident

Discussion 0
Question # 2

What are the out-of-the-box aggregate values that can be applied on widgets data?

Options:

A.  

Min, Max, Count, Average, Custom Transformers

B.  

Min, Max, Count, Average, Custom Group By

C.  

Count, Average, Sum, Min, Max

D.  

Count, Sum, Min, Max, Transformers

Discussion 0
Question # 3

How can Cortex XSOAR administrators prevent junior analysts from viewing a senior analyst dashboard?

Options:

A.  

Share the dashboard in Read and Edit mode for senior analysts.

B.  

Share the dashboard in Read & Edit mode for senior analysts and Read Only for juniors analysts.

C.  

Share the dashboard in Read and Write mode for senior analysts.

D.  

Share the dashboard in Read Only mode for junior analysts and senior analysts.

Discussion 0
Question # 4

Which three options can be defined in the layout settings? (Choose three.)

Options:

A.  

Set of fields to present

B.  

Permission to view the tab based on ‘Users’

C.  

Permission to view the tab based on ‘Roles’

D.  

Delete built-in tabs including the war room

E.  

Dynamic sections

Discussion 0
Question # 5

What is the default configuration for indicator auto-extraction when incidents are created?

Options:

A.  

Inline

B.  

Inband

C.  

None

D.  

Out of band

Discussion 0
Question # 6

Which two statements accurately describe layouts? (Choose two.)

Options:

A.  

Layouts override classification and mapping

B.  

New tabs can be added to the incident layout

C.  

Layouts can display incident information and custom fields

D.  

Layouts add or remove custom fields from an incident type

Discussion 0
Question # 7

The XSOAR administrator is writing an automation and would like to return an error entry back into XSOAR if a particular command errors out. How can this be achieved?

Options:

A.  

Using the demisto_error() function

B.  

Using a print statement

C.  

Using the demisto.debug() function

D.  

Using the return_error() function

Discussion 0
Question # 8

Which two options will troubleshoot an integration’s fetch incidents command? (Choose two.)

Options:

A.  

In the instance settings, enable the fetch incidents parameter and wait for one minute

B.  

Create a one task playbook with a fetch-incident command

C.  

execute !-fetch

D.  

execute !-fetch

Discussion 0
Question # 9

What will happen if a playbook debugger is left running for more than 24 hours?

Options:

A.  

By default, every 24 hours, the system closes any debugger sessions that have been open for more than 180 minutes.

B.  

The session must be stopped during 180 minutes manually by administrator, user will receive notification automatically.

C.  

The session will be running till stopped manually by administrator.

D.  

By default, the system closes automatically any debugger session that have been open 180 minutes.

Discussion 0
Question # 10

What does the outgoing mapper support?

Options:

A.  

Mirroring

B.  

Classification

C.  

Dynamic fields

D.  

Pre-processing

Discussion 0
Question # 11

Where would you look to find a personalized view of your own incidents and tasks?

Options:

A.  

Incident Summary View

B.  

My Incidents

C.  

My Threat Landscape

D.  

My Dashboard

Discussion 0
Question # 12

An engineer defined a dashboard which allows important metrics to be displayed. The engineer would like to make this dashboard the default dashboard.

How can it be accomplished?

Options:

A.  

Default Dashboard can be defined by ‘Role’

B.  

Use the server configuration key: default.dashboards

C.  

Save the dashboard as a widget and apply it to all users

D.  

Right click on the dashboard tab and ‘Set as Default’

Discussion 0
Question # 13

An XSOAR Engineer has developed a playbook and would like to contribute it to the XSOAR Marketplace to share with other users.

Which two options are available to the Engineer for contributing to the Marketplace? (Choose two.)

Options:

A.  

Open a ticket with the XSOAR support team

B.  

Create a pull request directly on Github

C.  

Contribute through the XSOAR UI

D.  

Send an email to contributions@xsoar.com

Discussion 0
Question # 14

Which two functions in XSOAR are incident types used for? (Choose two.)

Options:

A.  

To run dedicated playbooks for different event types

B.  

To classify events ingested from various sources into the relevant types

C.  

To classify indicators extracted in XSOAR incidents to their respective types

D.  

To facilitate role based access to XSOAR incidents

Discussion 0
Question # 15

Newly created subplaybooks do not have any inputs, or outputs. What is necessary to make them functional? (Choose two.)

Options:

A.  

Define input key in the subplaybook task. Map context values to pull from parent playbook.

B.  

The output of the previous task automatically becomes the input of the subplaybook.

C.  

Map inputs and outputs to the parent playbook and the subplaybook will use the same values.

D.  

Open the subplaybook and add inputs or outputs in the Playbook triggered task.

Discussion 0
Question # 16

An analyst wants to run a script to remove usernames from an incident before the incident becomes active in XSOAR. How can this be achieved?

Options:

A.  

Run an automation script in the Playground to remove usernames from the incident.

B.  

Create a pre-processing rule that runs an automation script to remove usernames from the incident as it comes into XSOAR.

C.  

Run an automation script on the XSOAR server to remove usernames from the incident.

D.  

Create a playbook task to remove the usernames from the incident.

Discussion 0
Question # 17

For troubleshooting, after a log bundle is created, where do the logs appear on the XCSOAR server?

Options:

A.  

/var/lib/demisto

B.  

/tmp/log/demisto

C.  

/usr/local/demisto

D.  

/var/log/demisto

Discussion 0
Question # 18

An administrator wants to run an automation in the War Room to set the incident field "Description" to "Confirmed Phishing". Which command should they enter in the War Room CLI?

Options:

A.  

!incidentSet description="Confirmed Phishing"

B.  

/incidentSet description=Confirmed Phishing

C.  

!setIncident description="Confirmed Phishing"

D.  

/setIncident description=Confirmed Phishing

Discussion 0
Question # 19

What are two of the actions available on the Version History tab of a content pack in the marketplace? (Choose two.)

Options:

A.  

Download content for offline installation

B.  

Uninstall content pack

C.  

Update to x version

D.  

Revert to x version

Discussion 0
Question # 20

Management would like to get an incident report automatically following an incident’s closure. How would this be accomplished?

Options:

A.  

Define a task in a playbook to generate an incident report before the closure occurs

B.  

Manually create an ‘Incident Report’

C.  

Configure post-processing using a script

D.  

Create an ‘Incident Report’ from the Reports page

Discussion 0
Question # 21

What is the default landing page for a new user in XSOAR?

Options:

A.  

Dashboards

B.  

Threat Intel

C.  

Settings

D.  

Marketplace

Discussion 0
Question # 22

Which of the following is a feature of XSOAR automations?

Options:

A.  

can run on multiple docker containers

B.  

can be set to run on a scheduled basis in the automation settings

C.  

can be password protected

D.  

can be written in C++

Discussion 0
Get PCSAE dumps and pass your exam in 24 hours!

Free Exams Sample Questions