Palo Alto Networks Certified Strata Field Engineer (PCSFE) — Question 23

Which two statements apply to the management Cloud NGFW by AWS firewall manager? (Choose two.)

Answer options

• A. Availability Zone can be created.
• B. Firewall policy can be included only with specified accounts and OUs.
• C. Firewall policy must be applied to all accounts under the Amazon Web Services (AWS) organization.
• D. Endpoints will be created via the firewall manager.

Correct answer: B, D

Explanation

Option B is correct because firewall policies can indeed be limited to particular accounts and organizational units. Option D is also correct as endpoints are created using the Firewall Manager. Options A and C are incorrect because you cannot create Availability Zones through Firewall Manager, and firewall policies do not have to apply universally to all accounts in the AWS organization.