Palo Alto Networks Exam PSE-Endpoint-Associate Topic 1 Question 25 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint-Associate exam

Question #: 25
Topic #: 1

[All PSE-Endpoint-Associate Questions]

Which three file types will be uploaded automatically to WildFire for examination? (Choose three.)

AApplication data files that trigger preventions

BExecutables with no previous verdict in the ESM deployment

CExecutables with a verdict overridden by the administrator

DExecutables allowed to run because their publisher is trusted

EExecutables allowed to run by local analysis

FApplication data files opened by the end user

Show Suggested Answer

Suggested Answer: A

by Loreta at May 29, 2022, 07:48 AM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

5 days ago

I think B, C, and E are the correct answers. Executables that haven't been analyzed or have an overridden verdict should be uploaded for examination.

upvoted 0 times

...

11 days ago

But A is important too because it triggers preventions.

upvoted 0 times

...

14 days ago

I disagree, I believe it's B, C, and D.

upvoted 0 times

...

16 days ago

I think the answer is A, B, and C.

upvoted 0 times

...