Palo Alto Networks SSE Engineer — Question 40

During a deployment of Prisma Access (Managed by Strata Cloud Manager) for mobile users, a SAML authentication type and authentication profile in the Cloud Identity Engine application is successfully created.
Using this SAML authentication, what is a valid next step to configure authentication for mobile users?

Answer options

• A. Perform a full commit to Strata Cloud Manager so the Cloud Identity Engine profiles get synchronized from the application.
• B. Permit the Cloud Identity Engine service account RBAC access to the mobile user folder in Strata Cloud Manager.
• C. In Strata Cloud Manager, create a new authentication type of “Cloud Identity Engine.”
• D. Create a SAML authentication profile in Strata Cloud Manager and link it to the Cloud Identity Engine profile.

Correct answer: D

Explanation

The correct answer is D because it directly links the SAML authentication profile created in the Cloud Identity Engine with Strata Cloud Manager, ensuring proper authentication for mobile users. Options A and B do not directly contribute to the next step in the authentication process, while option C suggests creating a new authentication type rather than utilizing the existing SAML setup.