ZDTA Practice Questions

A.  

The administrator needs to send a POST request along with the required parameters to Zldentity"s token endpoint.

B.  

The administrator needs to send a GET request along with the required parameters to Zldentity's token endpoint.

C.  

The administrator needs to logon to the ZIA portal to generate the access token with Super Admin role.

D.  

The administrator needs to logon to the ZIA portal to generate the access token with API Admin role.

A.  

Layered defense increases costs to attackers to operate.

B.  

Layered defense from multiple vendor solutions easily share attacker data.

C.  

Layered defense ensures attackers are prevented eventually.

D.  

Layered defense with multiple endpoint agents protects from attackers.

A.  

1 minute

B.  

10 minutes

C.  

30 minutes

D.  

5 minutes

A.  

Single DNS resolver with forwarders providing centralized results

B.  

Private MPLS in each branch office providing connection

C.  

Multiple distributed DNS resolvers providing local results

D.  

Optimized TCP Scaling for maximum throughput of files

A.  

Configure Advanced Cloud Sandbox policies.

B.  

Block Suspected phishing sites.

C.  

Enable Watering Hole detection.

D.  

Block Windows executable files from uncategorized websites.

A.  

Email is the only method for notifications as that is universally applicable and no other way of sending them makes sense.

B.  

In addition to email, text messages can be sent directly to one cell phone to alert the CISO who is then coordinating the work on the incident.

C.  

Leading ITSM systems can be connected to the Zero Trust Exchange using a NSS server, which will then connect to ITSM tools and forwards the alert.

D.  

In addition to email, notifications, based on Alert Rules, can be shared with leading ITSM or UCAAS tools over Webhooks.

A.  

Enable AI/ML based Smart Browser Isolation

B.  

Quarantine Mai ware

C.  

Create Zero Trust Network Decoy

D.  

Remove External Collaborators and Sharable Link

A.  

URL Filter is the most commonly used web filtering technique in the arsenal. It acts as first line of defense.

B.  

In a modern cloud world, access to all Internet sites and cloud applications should be granted by default. URL Filtering is no longer needed.

C.  

URL Filtering has been replaced by CASB functionality through blocking access to all Internet sites and only allowing a few corporate applications.

D.  

URL Filtering is outdated and no longer needed. The rise of HTTPS leads renders URL Filtering ineffective as all traffic is encrypted.

A.  

Define specific keywords, phrases, or patterns relevant to their organization's sensitive data policy.

B.  

Define specific governance and regulations relevant to their organization's sensitive data policy.

C.  

Define specific SaaS tenant relevant to their organization's sensitive data policy

D.  

Define specific file types relevant to their organization's sensitive data policy.

A.  

Prevents Patient Zero Infections

B.  

Reduces identity related risks

C.  

Prevents connections to Embargoed Countries

D.  

Blocks malicious traffic by dropping packets