Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Palo Alto Networks Exam PSE-Cortex Topic 1 Question 50 Discussion

Actual exam question for Palo Alto Networks's Palo Alto Networks System Engineer - Cortex Professional exam
Question #: 50
Topic #: 1
[All Palo Alto Networks System Engineer - Cortex Professional Questions]

The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Eun at Mar 10, 2024, 04:54 PM

Limited Time Offer

25%

Off

Get Premium PSE-Cortex Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Stanford
I think we need to check if the certificate was installed correctly.
upvoted 0 times
...
Ty
22 days ago
Hmm, that's a good point. I wonder if that would be the most elegant solution though. Reinstalling the root CA just feels like it would be the most straightforward way to address the issue.
upvoted 0 times
...
Jovita
23 days ago
Yeah, but adding paloaltonetworks.com to the SSL Decryption Exclusion list could also work, right? That way, the traffic between the agents and the console wouldn't be decrypted, preserving the trust.
upvoted 0 times
...
Apolonia
24 days ago
I agree. If the issue is that the agents aren't communicating with the console, then reinstalling the root CA certificate seems like the logical step to take. That should ensure the trust is properly established again.
upvoted 0 times
...
Carlee
25 days ago
Hmm, this question seems a bit tricky. If the certificate was installed as a trusted root CA, then I don't think disabling SSL decryption would be the right answer. That would just break the communication altogether.
upvoted 0 times
Charlie
4 days ago
Sounds good. Let's give that a try.
upvoted 0 times
...
Gladys
5 days ago
Yeah, I agree. Let's go with option D and reinstall the certificate.
upvoted 0 times
...
Rachael
6 days ago
But wouldn't enabling SSL decryption defeat the purpose of having a root CA certificate?
upvoted 0 times
...
Charlene
7 days ago
B) enable SSL decryption
upvoted 0 times
...
Doretha
8 days ago
I think option D makes more sense. The certificate may have been corrupted.
upvoted 0 times
...
Jina
9 days ago
D) reinstall the root CA certificate
upvoted 0 times
...
Emilio
10 days ago
A) add paloaltonetworks com to the SSL Decryption Exclusion list
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77