Palo Alto Networks System Engineer – SASE — Question 54

What is a benefit of a cloud-based secure access service edge (SASE) infrastructure over a Zero Trust Network Access (ZTNA) product based on a software-defined perimeter (SDP) model?

Answer options

• A. Users, devices, and apps are identified no matter where they connect from.
• B. Connection to physical SD-WAN hubs in ther locations provides increased interconnectivity between branch offices.
• C. Complexity of connecting to a gateway is increased, providing additional protection.
• D. Virtual private network (VPN) services are used for remote access to the internal data center, but not the cloud.

Correct answer: A

Explanation

The correct answer, A, highlights that a SASE framework offers consistent identification of users, devices, and applications regardless of their location, enhancing security and accessibility. Option B incorrectly emphasizes physical connectivity, which is not a primary benefit of SASE. Option C misrepresents the nature of gateway connections, as SASE aims to simplify security, not complicate it. Option D is incorrect since SASE focuses on cloud access rather than limiting it to internal data centers.