Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 601

A company requires that a specific set of ciphers be used when remotely managing their Palo Alto Networks appliances.
Which profile should be configured in order to achieve this?

Answer options

• A. Certificate profile
• B. SSL/TLS Service profile
• C. SSH Service profile
• D. Decryption profile

Correct answer: C

Explanation

The correct choice is C, the SSH Service profile, which is specifically designed to manage SSH connections, including cipher settings. The other options, such as the Certificate profile and Decryption profile, do not pertain to SSH management, while the SSL/TLS Service profile is related to HTTPS traffic rather than SSH.