Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 602

An engineer is tasked with enabling SSL decryption across the environment. What are three valid parameters of an SSL Decryption policy? (Choose three.)

Answer options

• A. GlobalProtect HIP
• B. source users
• C. App-ID
• D. URL categories
• E. source and destination IP addresses

Correct answer: B, D, E

Explanation

The correct parameters for an SSL Decryption policy include 'source users', 'URL categories', and 'source and destination IP addresses', as they define the traffic and its context. 'GlobalProtect HIP' and 'App-ID' are not relevant parameters for SSL decryption policies.