Palo Alto Networks Exam PSE-Endpoint-Associate Topic 1 Question 32 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint-Associate exam

Question #: 32
Topic #: 1

Which three statements about the trusted publisher mechanism are true? (Choose three.)

AThe trusted-publisher mechanism blocks executables from running unless they are signed by a trusted publisher.

BThe list of trusted publishers is maintained through content updates.

CThe trusted-publisher mechanism takes precedence over verdict overrides by administrators.

DThe trusted-publisher mechanism is called whenever an executable file would otherwise get an Unknown or No Connection verdict.

EThe trusted-publisher mechanism allows trusted signed executables to run without seeking a WildFire verdict.

FNo executable will be affected by the trusted-publisher mechanism unless it is signed by a publisher on a list maintained by Palo Alto Networks.

Show Suggested Answer

Suggested Answer: A

by Alline at Oct 11, 2022, 05:24 AM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

5 days ago

I'm not sure about statement B, but I think C is true because the mechanism should take precedence over administrator overrides.

upvoted 0 times

...

12 days ago

I agree with Becky. Statement E also seems true as it mentions allowing trusted signed executables to run.

upvoted 0 times

...

14 days ago

I think statement A is true because it makes sense to block untrusted executables.

upvoted 0 times

...