Download Zscaler Certification Exam Practice Questions: Chapters 1-2 & ZDX and more Exams Computer Science in PDF only on Docsity!
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
How does Zscaler Internet Access authenticate users? (Select 3) A) SAML B) SCIM C) LDAP D) Hosted Database A) SAML C) LDAP D) Hosted Database In order for Zscaler to enforce policy based on accessing devices, what method is best used by IdPs to share information about a user's accessing device? A) Kerberos B) SAML C) Header Injection D) Mobile Device Management B) SAML What is the fastest way to change a user's access entitlements? A) Send different attributes via SAML
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
B) Send different attributes via SCIM C) Isolate the user's browser D) Phone the user and ask them what they want B) Send different attributes via SCIM In what way does Zscaler's Identity Proxy enable authentication to SaaS applications? A) Injecting identity headers into the HTTP request B) SSL Inspection C) Browser Isolation D) Issuing SAML assertions D) Issuing SAML assertions How does Zscaler Private Access authenticate end users? A) Username and Password in a form-based auth B) Hosted DB C) SAML D) SCIM C) SAML
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
D) Tunnels encapsulate traffic and authenticate to the Zero Trust Exchange You want Zscaler Client Connector to automatically redirect to your corporate SAML IDP on launch. Which installer options should you configure to do so? (Select 2) A) --cloudName B) --userDomain C) --policyToken D) --deviceToken E) --strictEnforcement A) --cloudName B) --userDomain Browser Based Access enables what kinds of applications to be published? A) HTTP and HTTPS B) RDP and SSH C) Telnet and RDP D) HTTP, HTTPS, and SSH A) HTTP and HTTPS
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
Which check guarantees identification of a corporate-managed device by the Zscaler Client Connector? A) Client Certificate & Non-Exportable private key B) Registry Entry C) Firewall and Disk Encryption Enabled D) AV and Endpoint Protection A) Client Certificate & Non-Exportable private key When moving from an Explicit Proxy to a Tunneled/Transparent Proxy - what, if any, effects will be seen on the client? (Select 3) A) No Effect B) The client will always resolve DNS C) The client browser needs re-configuration D) Authenticated websites may no longer work E) An Explicit Proxy and a Transparent Proxy are the same thing B) The client will always resolve DNS C) The client browser needs re-configuration D) Authenticated websites may no longer work How often does the Zscaler Client Connector check for software updates?
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
D) CIFS, RDP, and SSJ A) Isolation, Browser Access, and Inspection You have data centers in New York, San Francisco, London, and Hong Kong. Each data center hosts multiple applications, and all have internet connectivity. What is the MINIMUM number of App Connectors you should deploy for production? (note) A) 4, one per DC B) 6, one per DC, plus 2 for cold standby C) 8, 2 per DC D) 16, 4 DC's and each requires a connector to build a mesh to the other DC's C) 8, 2 per DC What conditions exist for Trusted Network Detection? A) Hostname Resolution, Network Adaptor IP, Default Gateway B) Hostname Resolution, DNS Servers, Geo Location C) DNS Search Domain, DNS Server, Hostname Resolution D) DNS Servers, DNS Search Domain, Network Adaptor IP
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
C) DNS Search Domain, DNS Server, Hostname Resolution A server group maps _____ to ____? A) App Connectors Groups to Application Segments B) Applications to FQDNS C) FQDNs to IP Addresses D) Applications to Application Groups A) App Connectors Groups to Application Segments What is an Application Segment? (Select 3) A) A mechanism to append DNS Suffixes to short names B) A list of FQDNs or IP Addresses C) A list of TCP or UDP Ports D) A wildcard domain E) Segments define the network subnets applications exist on B) A list of FQDNs or IP Addresses C) A list of TCP or UDP Ports D) A wildcard domain
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
- egress latency
- app availability
- network congestion App Issues App issues would typically be seen in the Page Fetch Time (PFT) and Server Response Time (SRT) metrics. Device Metrics CPU/memory spikes (or held at 100% translate into slower client (ex. browser) response time and leads to bad user experience. App Availability The application is not available and users are seeing 5xx errors. 5 key features commonly utilized with ZDX:
- Visibility into SaaS & Private Applications
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
- Unified Communication as a Services (UCaaS) Monitoring
- Software & Device Inventory
- Y-Engine
- ZDX APIs Unified Communication as a Services (UCaaS) Monitoring UCaaS Monitoring enables organizations to quickly gain insights and troubleshoot performance issues with Microsoft Teams and Zoom. Software Inventory Software Inventory allows you to view current and historical information about software versions and updates on your users' devices. Y-Engine (Automated Root ZDX's Y-Engine (Automated Root Cause Analysis) allows an organization to automatically isolate root causes of performance issues, spend less time troubleshooting, eliminate finger-pointing, and get users back to work faster.
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
Web Probes and what metrics it collects: (4) always pull objects from the server and are used to collect metrics like:
- page fetch time
- DNS time
- server response time
- availability Cloud Path Probes and what metrics it collects: (3) discover the network elements of the application, basically what are the network hops the user is taking on the way to the application. Metrics collected include: โ Hop Count โ Packet Loss - for each hop โ Latency Information Protocols that Cloud Path Probes use: (4)
Chapters 1โ2: Practice Questions |
Chapter 4: Zscaler Digital Experience
- Adaptive
- ICMP
- TCP
- UDP Deep Tracing Collects more information about the userโs device. Instead of 5 - minute intervals (the default), administrators can run an on- demand deep trace on the userโs machine, targeting a specific application. Y-Engine (Single Point Score) Helps you get to the root cause of a problem quickly, automating your root causes analysis for the impacted ZDX Score. UCaas Monitoring Monitoring and looking at call quality for users (Zoom, Teams) over time, Monitoring with the ability to focus on specific meetings (participants, locations, devices...)
