Summer Certification Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Free and Premium Zscaler ZDTA Dumps Questions Answers

Page: 1 / 11
Total 153 questions

Zscaler Digital Transformation Administrator Questions and Answers

Question 1

Which proprietary technology does Zscaler use to calculate risk attributes dynamically for websites?

Options:

A.

Third-Party Sandbox

B.

Zscaler PageRisk

C.

Browser Isolation Feedback Form

D.

Deception Controller

Buy Now
Question 2

What ports and protocols are forwarded to the Zero Trust Exchange when Zscaler Client Connector is using Tunnel 2.0?

Options:

A.

TCP ports 80, 443 and 8080 only.

B.

Any HTTP/HTTPS traffic as well as DNS.

C.

All TCP and UDP ports as well as ICMP traffic.

D.

All Web ports as well as FTP and SSH.

Question 3

When filtering user access to certain web destinations what can be a better option, URL or Cloud Application filtering Policies?

Options:

A.

Cloud Application policies provide better access control.

B.

URL filtering policies provide better access control.

C.

Wherever possible URL policies are recommended.

D.

Both provide the same filtering capabilities.

Question 4

If you're migrating from an on-premises proxy, you will already have a proxy setting configured within the browser or within the system. With Tunnel Mode, the best practice is to configure what type of proxy configuration?

Options:

A.

Execute a GPO update to retrieve the proxy settings from AD.

B.

Enforce no Proxy Configuration.

C.

Use Web Proxy Auto Discovery (WPAD) to auto-configure the proxy.

D.

Use an automatic configuration script (forwarding PAC file).

Question 5

You've configured the API connection to automatically download Microsoft Information Protection (MIP) labels into ZIA; where will you use these imported labels to protect sensitive data in motion?

Options:

A.

Creating a custom DLP Dictionary

B.

Creating a SaaS Security Posture Control Policy.

C.

Creating a File Type Control Policy.

D.

Creating a custom DLP Policy.

Question 6

What is the main purpose of Sandbox functionality?

Options:

A.

Block malware that we have previously identified

B.

Build a test environment where we can evaluate the result of policies

C.

Identify Zero-Day Threats

D.

Balance threat detection across customers around the world

Question 7

Which of the following is a common use case for adopting Zscaler’s Data Protection?

Options:

A.

Reduce your Internet Attack Surface

B.

Prevent download of Malicious Files

C.

Prevent loss to Internet and Cloud Apps

D.

Securely connect users to Private Applications

Question 8

What Zscaler control can be implemented to limit exposure to malicious content?

Options:

A.

Role Based Access control (RBAC)

B.

Bandwidth Controls

C.

File type Controls

D.

Zscaler Digital Experience

Question 9

What is the default timer in ZDX Advanced for web probes to be sent?

Options:

A.

1 minute

B.

10 minutes

C.

30 minutes

D.

5 minutes

Question 10

What is the purpose of the Zscaler Client Connector providing the authentication token to the Zscaler Client Connector Portal after it is received from Zscaler Internet Access?

Options:

A.

To bypass multifactor authentication (MFA) during the enrollment process

B.

To immediately grant the user access to Zscaler Private Access resources

C.

To enable the portal to register the user’s device and pass the registration to Zscaler Internet Access

D.

To share the authentication token with the SAML IdP to validate the user session

Question 11

The Zscaler Gen AI Security Report gives visibility and insight into an organization's use of generative AI applications. What kind of log will include Prompt for administrators to view for different prompts entered by users in those applications?

Options:

A.

SaaS Security Logs

B.

Web Insights Logs

C.

Gen AI Insights Logs

D.

Advanced Firewall Logs

Question 12

Does the Access Control suite include features that prevent lateral movement?

Options:

A.

No. Access Control Services will only control access to the Internet and cloud applications.

B.

Yes. Controls for segmentation and conditional access are part of the Access Control Services.

C.

Yes. The Cloud Firewall will detect network segments and provide conditional access.

D.

No. The endpoint firewall will detect network segments and steer access.

Question 13

What is the maximum default frequency of device posture profile evaluation by Zscaler Client Connector?

Options:

A.

15 minutes

B.

2 minutes

C.

5 minutes

D.

10 minutes

Question 14

What can Zscaler Client Connector evaluate that provides the most thorough determination of the trust level of a device as criteria for an access policy enabling remote access to sensitive private applications?

Options:

A.

Client Type

B.

SCIM User Attributes

C.

Trusted Network

D.

Posture Profiles

Question 15

An administrator would like users to be able to use the corporate instance of a SaaS application. Which of the following allows an administrator to make that distinction?

Options:

A.

Out-of-band CASB

B.

Cloud application control

C.

URL filtering with SSL inspection

D.

Endpoint DLP

Question 16

What is Zscaler's rotation policy for intermediate certificate authority certificates?

Options:

A.

Certificates are rotated every 90 days and have a 180-day expiration.

B.

Lifetime certificates have no expiration date.

C.

Certificates are rotated every seven days and have a 14-day expiration.

D.

Certificates are issued dynamically and expire in 24 hours.

Question 17

Can URL Filtering make use of Cloud Browser Isolation?

Options:

A.

No. Cloud Browser Isolation is a separate platform.

B.

No. Cloud Browser Isolation is only a feature of Advanced Threat Defense.

C.

Yes. After blocking access to a site, the user can manually switch on isolation.

D.

Yes. Isolate is a possible Action for URL Filtering.

Question 18

What is one business risk introduced by the use of legacy firewalls?

Options:

A.

Performance issues

B.

Reduced management

C.

Low costs

D.

Low licensing support

Question 19

Which of the following is an open standard used to provide automatic updates of a user's group and department information? A Import B. LDAP Sync C. SCIM D. SAML

Options:

A.

Import

B.

LDAP Sync

C.

SCIM

D.

SAML

Question 20

Which are valid criteria for use in Access Policy Rules for ZPA?

Options:

A.

Group Membership, ZIA Risk Score, Domain Joined, Certificate Trust

B.

Username, Trusted Network Status, Password, Location

C.

SCIM Group, Time of Day, Client Type, Country Code

D.

Department, SNI, Branch Connector Group, Machine Group

Question 21

In Data Loss Prevention, how are Dictionaries and Engines related?

Options:

A.

A DLP Engine runs over the traffic being sent out and dynamically selects DLP dictionaries to apply

B.

A Data Loss Prevention policy applies a DLP dictionaries

C.

A Data Loss Prevention policy applies a DLP Engine and a DLP engine uses DLP dictionaries

D.

A Data Loss Prevention policy applies a DLP Engine

Question 22

How would an administrator retrieve the access token to use the Zscaler One API?

Options:

A.

The administrator needs to send a POST request along with the required parameters to ZIdentity"s token endpoint.

B.

The administrator needs to send a GET request along with the required parameters to ZIdentity's token endpoint.

C.

The administrator needs to logon to the ZIA portal to generate the access token with Super Admin role.

D.

The administrator needs to logon to the ZIA portal to generate the access token with API Admin role.

Question 23

Which of the following scenarios would generate a “Patient 0” alert?

Options:

A.

Zscaler's AI/ML based Smart Browser Isolation was triggered due to a users accessing a newly-registered domain.

B.

A new malicious file was detected by the sandbox due to an “allow and scan” First-Time Action in the sandbox policy.

C.

A new malicious file was detected by the sandbox due to an “quarantine” First-Time Action in the sandbox policy.

D.

Zscaler detected a HIPAA violation with in-band Data Protection scanning.

Question 24

Which of the following DLP Notification methods can be used to forward a copy of the data that triggered the DLP policy to the auditor?

Options:

A.

Email Notification Template

B.

NSS Log Forwarding to SIEM

C.

SMS Text Message via PagerDuty

D.

Zscaler Client Connector pop-up message

Question 25

Which Advanced Threat Protection feature restricts website access by geographic location?

Options:

A.

Spyware Callback

B.

Botnet Protection

C.

Blocked Countries

D.

Browser Exploits

Question 26

How is data gathered with ZDX Advanced client performance?

Options:

A.

By generating synthetic transactions to designated Internet and Private applications every 5 minutes and measuring the performance of those sessions.

B.

By constantly analyzing live user sessions to both Internet and Private applications and measuring the performance of those sessions.

C.

By using AI predictive analysis ZDX can extrapolate near-term client performance based upon recent past data observed.

D.

By constantly analyzing live user sessions to critical SaaS applications and measuring the performance of those sessions.

Question 27

What is one of the four steps of a cyber attack?

Options:

A.

Find Cash Safe

B.

Find Email Addresses

C.

Find Least Secure Office Building

D.

Find Attack Surface

Question 28

In support of data privacy for TLS/SSL inspection, when you subscribe to ZIA, you enter into what kind of agreement?

Options:

A.

Zscaler Compliance Policy

B.

Zscaler Privacy Policy

C.

Acceptable Use Policy

D.

Zscaler Data Processing Agreement

Question 29

What transport mechanism will Zscaler Client Connector use to forward traffic to the Zero Trust Exchange when configured for Tunnel 2.0?

Options:

A.

Zscaler Client Connector will encapsulate the user's traffic in GRE tunnels to the ZTE.

B.

Zscaler Client Connector will encapsulate the user's traffic in IPSec tunnels to the ZTE.

C.

Zscaler Client Connector will encapsulate the user's traffic in DTLS/TLS tunnels to the ZTE.

D.

Zscaler Client Connector will encapsulate the user's traffic in HTTP Connect tunnels to the ZTE.

Question 30

Which Zscaler feature detects whether an intruder is accessing your internal resources?

Options:

A.

SandBox

B.

SSL Decryption Bypass

C.

Browser Isolation

D.

Deception

Question 31

Which type of malware is specifically used to deliver other malware?

Options:

A.

RAT

B.

Maldocs

C.

Downloaders

D.

Exploitation tool

Question 32

Which API architectural style is used by Zscaler for Zero Trust Automation?

Options:

A.

JSON-RPC

B.

SOAP

C.

GraphQL

D.

REST

Question 33

Which filtering policy blocked access to the Network Application?

Options:

A.

Sandbox

B.

Browser Control

C.

Firewall Filtering

D.

DLP

Question 34

An administrator wants to allow users to access a wide variety of untrusted URLs. Which of the following would allow users to access these URLs in a safe manner?

Options:

A.

Browser Isolation

B.

App Connector

C.

Zscaler Private Access

D.

Zscaler Client Connector

Question 35

How does a Zscaler administrator troubleshoot a certificate pinned application?

Options:

A.

They could look at SSL logs for a failed client handshake.

B.

They could reboot the endpoint device.

C.

They could inspect the ZIA Web Policy.

D.

They could look into the SaaS application analytics tab.

Question 36

The Security Alerts section of the Alerts dashboard has a graph showing what information?

Options:

A.

Top 5 Malware Programs Detected

B.

Top 5 Viruses by Region

C.

Top 5 Threats by Systems Impacted

D.

Top 5 Unified Threat Yara Options

Question 37

An administrator needs to SSL inspect all traffic but one specific URL category. The administrator decides to create two policies, one to inspect all traffic and another one to bypass the specific category. What is the logical sequence in which they have to appear in the list?

Options:

A.

Both policies are incompatible, so it is not possible to have them together.

B.

First the policy for the exception Category, then further down the list the policy for the generic "inspect all."

C.

First the policy for the generic "inspect all", then further down the list the policy for the exception Category.

D.

All policies both generic and specific will be evaluated so no specific order is required.

Question 38

What are common delivery mechanisms for malware?

Options:

A.

Malware downloads from web pages

B.

Personal emails, company documents, OneDrive

C.

Spam, exploit kits, USB drives, video streaming

D.

Phishing, Exploit Kits, Watering Holes, Pre-existing Compromise

Question 39

What does an Endpoint refer to in an API architecture?

Options:

A.

An end-user device like a laptop or an OT/IoT device

B.

A URL providing access to a specific resource

C.

Zscaler public service edges

D.

Zscaler API gateway providing access to various components

Question 40

Zscaler Client Connector checks for software updates automatically at which interval?

Options:

A.

Every 6 hours

B.

Every 12 hours

C.

Every 2 hours

D.

Every 24 hours

Question 41

What is the purpose of a Microtunnel (M-Tunnel) in Zscaler?

Options:

A.

To provide an end-to-end communication channel between ZCC clients

B.

To provide an end-to-end communication channel to Microsoft Applications such as M365

C.

To create an end-to-end communication channel to Azure AD for authentication

D.

To create an end-to-end communication channel to internal applications

Question 42

What are the two types of Alert Rules that can be defined?

Options:

A.

ThreatLabZ pre-defined and customer defined

B.

Snort defined and 3rd party defined

C.

ThreatLabZ pre-defined and 3rd party defined

D.

Customer defined and 3rd party defined

Question 43

What is the immediate outcome or effect when the Zscaler Office 365 One Click Rule is enabled?

Options:

A.

All traffic undergoes mandatory SSL inspection.

B.

Office 365 traffic is exempted from SSL inspection and other web policies.

C.

Non-Office 365 traffic is blocked.

D.

All Office 365 drive traffic is blocked.

Question 44

SSH use or tunneling was detected and blocked by which feature?

Options:

A.

Cloud App Control

B.

URL Filtering

C.

Advanced Threat Protection

D.

Mobile Malware Protection

Question 45

Can Notifications, based on Alert Rules, be sent with methods other than email?

Options:

A.

Email is the only method for notifications as that is universally applicable and no other way of sending them makes sense.

B.

In addition to email, text messages can be sent directly to one cell phone to alert the CISO who is then coordinating the work on the incident.

C.

Leading ITSM systems can be connected to the Zero Trust Exchange using a NSS server, which will then connect to ITSM tools and forwards the alert.

D.

In addition to email, notifications, based on Alert Rules, can be shared with leading ITSM or UCAAS tools over Webhooks.

Page: 1 / 11
Total 153 questions