Palo Alto Networks System Engineer – Strata — Question 77

Which three of the following are identified in the Best Practice Assessment tool? (Choose three.)

Answer options

• A. use of device management access and settings
• B. use of decryption policies
• C. presence of command-and-control (C2) sessions
• D. identification of sanctioned and unsanctioned software-as-a-service (SaaS) application
• E. measurement of the adoption of URL filters, App-ID, and User-ID

Correct answer: A, B, E

Explanation

The correct answers A, B, and E are explicitly recognized components in the Best Practice Assessment tool, focusing on device management, decryption policies, and the adoption of security measures. Options C and D do not align with the main focus areas of the tool, which is more about management and policy rather than detecting C2 sessions or classifying SaaS applications.