Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 121
An Administrator is configuring Authentication Enforcement and they would like to create an exemption rule to exempt a specific group from authentication. Which authentication enforcement object should they select?
Answer options
- A. default-no-captive-portal
- B. default-authentication-bypass
- C. default-browser-challenge
- D. default-web-form
Correct answer: A
Explanation
The correct answer is A, as 'default-no-captive-portal' is specifically designed to create exemptions from authentication enforcement. The other options are not intended for this purpose; 'default-authentication-bypass' is meant for bypassing authentication entirely, while 'default-browser-challenge' and 'default-web-form' involve different forms of authentication processes.