Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 345

An administrator creates an application-based security policy rule and commits the change to the firewall.

Which two methods should be used to identify the dependent applications for the respective rule? (Choose two.)

Answer options

• A. Review the App Dependency application list from the Commit Status view.
• B. Open the security policy rule and review the Depends On application list.
• C. Reference another application group containing similar applications.
• D. Use the show predefined xpathcommand and review the output.

Correct answer: A, B

Explanation

The correct answers are A and B because they directly provide the application dependencies linked to the specified security policy rule. Option C does not specifically identify dependencies for the rule in question, and option D pertains to a command that may not yield relevant information regarding application dependencies.