Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks Exam PCDRA Topic 10 Question 59 Discussion

Actual exam question for Palo Alto Networks's PCDRA exam
Question #: 59
Topic #: 10
[All PCDRA Questions]

Which of the following paths will successfully activate Remediation Suggestions?

Show Suggested Answer Hide Answer
Suggested Answer: B

Remediation Suggestions is a feature of Cortex XDR that provides you with recommended actions to remediate the root cause and impact of an incident. Remediation Suggestions are based on the analysis of the causality chain, the behavior of the malicious files or processes, and the best practices for incident response. Remediation Suggestions can help you to quickly and effectively contain and resolve an incident, as well as prevent future recurrence.

To activate Remediation Suggestions, you need to follow these steps:

In the Cortex XDR management console, go toIncidentsand select an incident that you want to remediate.

ClickCausality Viewto see the graphical representation of the causality chain of the incident.

ClickActionsand selectRemediation Suggestions. This will open a new window that shows the suggested actions for each node in the causality chain.

Review the suggested actions and select the ones that you want to apply. You can also edit or delete the suggested actions, or add your own custom actions.

ClickApplyto execute the selected actions on the affected endpoints. You can also schedule the actions to run at a later time or date.


Remediate Changes from Malicious Activity: This document explains how to use Remediation Suggestions to remediate the root cause and impact of an incident.

Causality View: This document describes how to use Causality View to investigate the causality chain of an incident.

Contribute your Thoughts:

Elmira
4 months ago
Remediation Suggestions? More like Remediation Confusion, am I right? But in all seriousness, I think D is the way to go.
upvoted 0 times
Colene
4 months ago
I think A might also work, have you tried that before?
upvoted 0 times
...
Leota
4 months ago
I agree, D seems like the most direct path to access Remediation Suggestions.
upvoted 0 times
...
...
Kristine
4 months ago
Hmm, I'm torn between C and D. Decisions, decisions. Maybe I'll just roll a dice to decide.
upvoted 0 times
Haydee
3 months ago
Why not try rolling a dice to decide between C and D?
upvoted 0 times
...
Alease
4 months ago
I believe C is the way to go for activating Remediation Suggestions.
upvoted 0 times
...
Wilda
4 months ago
I think D is the correct path to activate Remediation Suggestions.
upvoted 0 times
...
...
Cherelle
4 months ago
I think B) Causality View > Actions > Remediation Suggestions could be a possible path as well.
upvoted 0 times
...
Dottie
4 months ago
I'm not sure, but I think C) Alerts Table > Right-click on a process node > Remediation Suggestions might also work.
upvoted 0 times
...
Justine
4 months ago
I disagree, I believe the correct path is D) Alerts Table > Right-click on an alert > Remediation Suggestions.
upvoted 0 times
...
Edison
4 months ago
Hah, who needs Remediation Suggestions when you can just turn it all off and call it a day? But seriously, I'm going with D.
upvoted 0 times
...
Elmira
4 months ago
I think the correct path is A) Incident View > Actions > Remediation Suggestions.
upvoted 0 times
...
Thomasena
5 months ago
Wait, are we supposed to do this from the Alerts Table? I was thinking B - Causality View would be the way to go.
upvoted 0 times
Vi
3 months ago
Let's try D first and see if it works.
upvoted 0 times
...
Bong
3 months ago
I believe it's C, right-clicking on a process node.
upvoted 0 times
...
Fairy
4 months ago
I'm not sure, I was leaning towards A.
upvoted 0 times
...
Tambra
4 months ago
I believe C is the right way to activate Remediation Suggestions from the Alerts Table.
upvoted 0 times
...
Jaclyn
4 months ago
I think D is the correct path.
upvoted 0 times
...
Tonette
4 months ago
I usually go through Incident View to access Remediation Suggestions.
upvoted 0 times
...
Emmett
4 months ago
I think D is the correct path to activate Remediation Suggestions.
upvoted 0 times
...
...
Derick
5 months ago
I think D is the correct answer. Makes sense to access Remediation Suggestions from the Alerts Table.
upvoted 0 times
Rebbecca
4 months ago
I think A might also work, since it involves going through the Incident View.
upvoted 0 times
...
Jillian
4 months ago
I agree, D seems like the most logical choice.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77