New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Palo Alto Networks PSE-Cortex Exam - Topic 2 Question 72 Discussion

Actual exam question for Palo Alto Networks's PSE-Cortex exam
Question #: 72
Topic #: 2
[All PSE-Cortex Questions]

The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Jonell at Dec 05, 2024, 03:23 PM

Limited Time Offer

25%

Off

Get Premium PSE-Cortex Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Thomasena
3 months ago
Not sure if disabling SSL decryption (C) is a good idea.
upvoted 0 times
...
Roxanne
3 months ago
I agree with A, exclusion list makes sense here.
upvoted 0 times
...
Lavera
3 months ago
Surprised that reinstalling the root CA certificate (D) is even an option!
upvoted 0 times
...
Garry
4 months ago
Definitely not B, that would just complicate things.
upvoted 0 times
...
Claribel
4 months ago
I think option A is the way to go.
upvoted 0 times
...
Vilma
4 months ago
I vaguely remember that enabling SSL decryption might be necessary in some cases, but it feels risky. Is option B really the best choice here?
upvoted 0 times
...
Janet
4 months ago
I feel like adding paloaltonetworks.com to the exclusion list could help, but I can't recall if that's the right move. Maybe option A?
upvoted 0 times
...
Yolande
4 months ago
I think we practiced a similar question where we had to check the root CA certificate. Could it be option D? That seems plausible.
upvoted 0 times
...
Albina
5 months ago
I remember something about SSL decryption causing issues with communication, so maybe I should consider option C? But I'm not entirely sure.
upvoted 0 times
...
Laurel
5 months ago
I'm not sure about this one. Adding the domain to the exclusion list or enabling/disabling SSL decryption could both be valid approaches. I'll need to think it through step-by-step.
upvoted 0 times
...
Noel
5 months ago
Easy peasy! The question is clearly asking about SSL decryption, so disabling it should fix the communication problem.
upvoted 0 times
...
Nakita
5 months ago
Okay, I think I've got it. If the agents can't communicate with the console, then the root CA certificate must be the issue. Reinstalling it seems like the logical solution.
upvoted 0 times
...
Yesenia
5 months ago
Hmm, I'm a bit confused. Is the issue that the agents can't communicate with the console, or that the SSL decryption is causing problems? I'll need to re-read the question carefully.
upvoted 0 times
...
Malissa
5 months ago
This seems like a tricky one. I'll need to think through the implications of the certificate being installed as a trusted root CA.
upvoted 0 times
...
Sheridan
1 year ago
Whoever wrote this question is clearly trying to trick us. The real answer is probably to sacrifice a goat under the full moon. Just kidding, it's gotta be D, right?
upvoted 0 times
Darnell
1 year ago
D) reinstall the root CA certificate
upvoted 0 times
...
Lindy
1 year ago
D) reinstall the root CA certificate
upvoted 0 times
...
Alease
1 year ago
C) disable SSL decryption
upvoted 0 times
...
Isreal
1 year ago
B) enable SSL decryption
upvoted 0 times
...
Arleen
1 year ago
A) add paloaltonetworks com to the SSL Decryption Exclusion list
upvoted 0 times
...
...
Claudio
1 year ago
I would also consider checking if the certificate is still valid before reinstalling it.
upvoted 0 times
...
Erick
1 year ago
I bet the admin forgot to add paloaltonetworks.com to the exclusion list. Classic mistake, like forgetting to turn it off and on again.
upvoted 0 times
...
Rickie
1 year ago
Hold up, are we sure the issue isn't with the SSL decryption? Maybe we should try enabling or disabling it first before going for the nuclear option.
upvoted 0 times
Rikki
1 year ago
B) enable SSL decryption
upvoted 0 times
...
Renay
1 year ago
A) add paloaltonetworks com to the SSL Decryption Exclusion list
upvoted 0 times
...
...
Rodrigo
1 year ago
I agree with Valentin, if the certificate is not working, reinstalling it might solve the issue.
upvoted 0 times
...
Corrie
1 year ago
Hmm, I think the answer is D. Reinstalling the root CA certificate seems like the obvious solution here. No need to overcomplicate things.
upvoted 0 times
Suzan
1 year ago
Good idea, let's see if that resolves the problem.
upvoted 0 times
...
Lacresha
1 year ago
Let's go ahead and reinstall the certificate then.
upvoted 0 times
...
Danica
1 year ago
I agree, it's the most straightforward solution.
upvoted 0 times
...
Thad
1 year ago
Reinstalling the root CA certificate should fix the communication issue.
upvoted 0 times
...
Shantay
1 year ago
D) reinstall the root CA certificate
upvoted 0 times
...
Mari
1 year ago
C) disable SSL decryption
upvoted 0 times
...
Rasheeda
1 year ago
B) enable SSL decryption
upvoted 0 times
...
Lorrie
1 year ago
A) add paloaltonetworks com to the SSL Decryption Exclusion list
upvoted 0 times
...
Ardella
1 year ago
No problem! It's always good to double check the steps for troubleshooting.
upvoted 0 times
...
Lorita
1 year ago
Oh, I see. Thanks for clarifying. I'll keep that in mind for next time.
upvoted 0 times
...
Yvette
1 year ago
Actually, the correct action is A) add paloaltonetworks com to the SSL Decryption Exclusion list.
upvoted 0 times
...
Billye
1 year ago
I think the answer is D. Reinstalling the root CA certificate seems like the obvious solution here. No need to overcomplicate things.
upvoted 0 times
...
...
Valentin
1 year ago
I think the answer is D) reinstall the root CA certificate.
upvoted 0 times
...

Save Cancel