Palo Alto Networks Certified Network Security Administrator (PCNSA) — Question 54
An administrator would like to use App-ID's deny action for an application and would like that action updated with dynamic updates as new content becomes available.
Which security policy action causes this?
Answer options
- A. Reset server
- B. Reset both
- C. Deny
- D. Drop
Correct answer: C
Explanation
The correct answer is C, Deny, because it allows the administrator to block access while also receiving updates on the application's status. The other options, such as Reset server and Reset both, are related to session management rather than denying application access, and Drop simply discards packets without providing the same level of control as Deny.