Palo Alto Networks SSE Engineer — Question 30

How can an engineer use risk score customization in SaaS Security Inline to limit the use of unsanctioned SaaS applications by employees within a Security policy?

Answer options

• A. Lower the risk score of sanctioned applications and increase the risk score for unsanctioned applications.
• B. Increase the risk score for all SaaS applications to automatically block unwanted applications.
• C. Build an application filter using unsanctioned SaaS as the category.
• D. Build an application filter using unsanctioned SaaS as the characteristic.

Correct answer: A

Explanation

The correct answer is A because lowering the risk score for sanctioned applications while increasing it for unsanctioned ones effectively discourages the use of the latter. Option B is incorrect as it would block all applications indiscriminately, not just the unsanctioned ones. Options C and D suggest creating filters but do not address the customization of risk scores, which is the key to managing access based on risk levels.