Palo Alto Networks Network Security Generalist — Question 24

Which step is necessary to ensure an organization is using the inline cloud analysis features in its Advanced Threat Prevention subscription?

Answer options

• A. Configure Advanced Threat Prevention profiles with default settings and only focus on high-risk traffic to avoid affecting network performance.
• B. Enable SSL decryption in Security policies to inspect and analyze encrypted traffic for threats.
• C. Update or create a new anti-spyware security profile and enable the appropriate local deep learning models.
• D. Disable anti-spyware to avoid performance impacts and rely solely on external threat intelligence.

Correct answer: B

Explanation

The correct answer is B, as enabling SSL decryption is crucial for inspecting encrypted traffic that may contain threats. Option A focuses on high-risk traffic but does not address the need for SSL decryption. Option C pertains to updating anti-spyware profiles, which is not directly related to inline cloud analysis, and option D suggests disabling anti-spyware, which would leave the organization vulnerable.