Palo Alto Networks Exam PCDRA Topic 3 Question 68 Discussion

Actual exam question for Palo Alto Networks's PCDRA exam

Question #: 68
Topic #: 3

[All PCDRA Questions]

What is the purpose of the Cortex Data Lake?

Aa local storage facility where your logs and alert data can be aggregated

Ba cloud-based storage facility where your firewall logs are stored

Cthe interface between firewalls and the Cortex XDR agents

Dthe workspace for your Cortex XDR agents to detonate potential malware files

Show Suggested Answer

Suggested Answer: B

To pivot within a row to Causality view and Timeline views for further investigation, you can use the Open Card and Open Timeline actions respectively. The Open Card action will open a new tab with the Causality view of the selected row, showing the causal chain of events that led to the alert. The Open Timeline action will open a new tab with the Timeline view of the selected row, showing the chronological sequence of events that occurred on the affected endpoint. These actions allow you to drill down into the details of each alert and understand the root cause and impact of the incident.Reference:

Cortex XDR User Guide, Chapter 9: Investigate Alerts, Section: Pivot to Causality View and Timeline View

PCDRA Study Guide, Section 3: Investigate and Respond to Alerts, Objective 3.1: Investigate alerts using the Causality view and Timeline view

by Lavonne at Oct 21, 2024, 04:06 AM

Limited Time Offer

25%

Off

Get Premium PCDRA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Charlena

2 months ago

If the Cortex Data Lake was for detonating malware, I'd be worried about all the explosions happening in the cloud. Option D is a real blast, but not the right one.

upvoted 0 times