Palo Alto Networks Exam PCNSE Topic 1 Question 67 Discussion

Actual exam question for Palo Alto Networks's Palo Alto Networks Certified Security Engineer PAN-OS 11.0 exam

Question #: 67
Topic #: 1

[All Palo Alto Networks Certified Security Engineer PAN-OS 11.0 Questions]

A company is deploying User-ID in their network. The firewall learn needs to have the ability to see and choose from a list of usernames and user groups directly inside the Panorama policies when creating new security rules

How can this be achieved?

ABy configuring Data Redistribution Client in Panorama > Data Redistribution

BBy configuring User-ID source device in Panorama > Managed Devices

CBy configuring User-ID group mapping in Panorama > User Identification

DBy configuring Master Device in Panorama > Device Groups

Show Suggested Answer

Suggested Answer: C

User-ID group mapping is a feature that allows Panorama to retrieve user and group information from directory services such as LDAP or Active Directory1. This information can be used to enforce security policies based on user identity and group membership.

To configure User-ID group mapping on Panorama, you need to perform the following steps1:

Select Panorama > User Identification > Group Mapping Settings

Click Add and enter a name for the server profile

Select a Server Type (LDAP or Active Directory)

Click Add and enter the server details (IP address, port number, etc.)

Click OK

Select Group Include List and click Add

Select the groups that you want to include in the group mapping

Click OK

Commit your changes

By configuring User-ID group mapping on Panorama, you can see and choose from a list of usernames and user groups directly inside the Panorama policies when creating new security rules2.

by Teddy at Mar 22, 2023, 09:37 PM

Limited Time Offer

25%

Off

Get Premium PCNSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!