Palo Alto Networks System Engineer – SASE — Question 18

How does a secure web gateway (SWG) protect users from web-based threats while still enforcing corporate acceptable use policies?

Answer options

• A. Users are mapped via server logs for login events and syslog messages from authenticating services.
• B. It uses a cloud-based machine learning (ML)-powered web security engine to perform ML-based inspection of web traffic in real-time.
• C. It prompts the browser to present a valid client certificate to authenticate the user.
• D. Users access the SWG, which then connects the user to the website while still performing security measures.

Correct answer: D

Explanation

The correct answer, D, describes how the SWG acts as an intermediary, ensuring security measures while allowing access to websites. Option A discusses user tracking but does not directly relate to threat protection or policy enforcement. Option B mentions machine learning for web traffic inspection but does not explain the enforcement of policies. Option C focuses on client certificate authentication, which is not the primary function of an SWG in this context.