Pre-Summer Sale Special - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

Home > Zscaler > Digital Transformation Administrator > ZDTA

ZDTA Zscaler Digital Transformation Administrator Question and Answers

Question # 4

What is the primary function of the on-premises VM in the EDM process?

A.

To local analyze cloud transactions for potential PII exfiltration.

B.

To replicate sensitive data across all organizational servers.

C.

To automate the indexing process by creating hashes for structured data elements.

D.

To store sensitive data securely and prevent unauthorized data access.

Full Access
Question # 5

Which of the following DLP Notification methods can be used to forward a copy of the data that triggered the DLP policy to the auditor?

A.

Email Notification Template

B.

NSS Log Forwarding to SIEM

C.

SMS Text Message via PagerDuty

D.

Zscaler Client Connector pop-up message

Full Access
Question # 6

What enables zero trust to be properly implemented and enforced between an originator and the destination application?

A.

Trusted network criteria designate the locations of originators which can be trusted.

B.

Access is granted without sharing the network between the originator and the destination application.

C.

Cloud firewall policies ensure that only authenticated users are allowed access to destination applications.

D.

Connectivity between the originator and the destination application is over IPSec tunnels.

Full Access
Question # 7

What is the default timer in ZDX Advanced for web probes to be sent?

A.

1 minute

B.

10 minutes

C.

30 minutes

D.

5 minutes

Full Access
Question # 8

If you're migrating from an on-premises proxy, you will already have a proxy setting configured within the browser or within the system. With Tunnel Mode, the best practice is to configure what type of proxy configuration?

A.

Execute a GPO update to retrieve the proxy settings from AD.

B.

Enforce no Proxy Configuration.

C.

Use Web Proxy Auto Discovery (WPAD) to auto-configure the proxy.

D.

Use an automatic configuration script (forwarding PAC file).

Full Access
Question # 9

How frequently does the Zscaler Client Connector typically check for updates to policy, forwarding, and administration settings?

A.

Every 120 minutes

B.

Every 60 minutes

C.

Every 90 minutes

D.

Every 80 minutes

Full Access
Question # 10

Which of the following statements accurately reflects Zscaler's file size limitation for Malware Protection scans?

A.

Zscaler scans all files regardless of size.

B.

Zscaler scans files only if they are below 100 MB.

C.

Zscaler scans files up to 500 MB

D.

Zscaler scans files up to 400 MB.

Full Access
Question # 11

Zscaler Data Protection supports custom dictionaries. What actions can administrators take with these dictionaries to protect data in motion?

A.

Define specific keywords, phrases, or patterns relevant to their organization's sensitive data policy.

B.

Define specific governance and regulations relevant to their organization's sensitive data policy.

C.

Define specific SaaS tenant relevant to their organization's sensitive data policy

D.

Define specific file types relevant to their organization's sensitive data policy.

Full Access
Question # 12

For a deployment using both ZIA and ZPA set of services, what is the best authentication solution?

A.

Use forms Authentication in ZPA and SAML in ZIA

B.

Use forms Authentication in ZIA and SAML in ZPA

C.

Configure Authentication using SAML on both ZIA and ZPA

D.

Use forms Authentication for both ZIA and ZPA

Full Access
Question # 13

Which step has a default frequency of two hours in the Zscaler client connector process?

A.

Policy update check

B.

PAC File Download

C.

Software update policy check

D.

Refresh on Network Changes

Full Access
Question # 14

When configuring Zscaler Private Access, what is the function of the Server Group?

A.

Maps FQDNs to IP Addresses

B.

Maps Applications to FQDNs

C.

Maps App Connector Groups to Application Segments

D.

Maps Applications to Application Groups

Full Access
Question # 15

What does an Endpoint refer to in an API architecture?

A.

An end-user device like a laptop or an OT/IoT device

B.

A URL providing access to a specific resource

C.

Zscaler public service edges

D.

Zscaler API gateway providing access to various components

Full Access
Question # 16

The Zscaler Gen AI Security Report gives visibility and insight into an organization's use of generative AI applications. What kind of log will include Prompt for administrators to view for different prompts entered by users in those applications?

A.

SaaS Security Logs

B.

Web Insights Logs

C.

Gen AI Insights Logs

D.

Advanced Firewall Logs

Full Access
Question # 17

Fundamental capabilities needed by other services within the Zscaler Zero Trust Exchange are provided by which of these?

A.

Access Control Services

B.

Digital Experience Monitoring

C.

Cyber Security Services

D.

Platform Services

Full Access
Question # 18

What ports and protocols are forwarded to the Zero Trust Exchange when Zscaler Client Connector is using Tunnel 2.0?

A.

TCP ports 80, 443 and 8080 only.

B.

Any HTTP/HTTPS traffic as well as DNS.

C.

All TCP and UDP ports as well as ICMP traffic.

D.

All Web ports as well as FTP and SSH.

Full Access
Question # 19

Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites. XSS includes which of the following?

A.

Spyware Callback

B.

Anonymizers

C.

Cookie Stealing

D.

IRC Tunneling

Full Access
Question # 20

Which of the following secures all IP unicast traffic?

A.

Secure Shell (SSH)

B.

Tunnel with local proxy

C.

Enforce PAC

D.

Z-Tunnel 2.0

Full Access
Question # 21

Zscaler Client Connector checks for software updates automatically at which interval?

A.

Every 6 hours

B.

Every 12 hours

C.

Every 2 hours

D.

Every 24 hours

Full Access
Question # 22

How does Zscaler Risk360 quantify risk?

A.

The number of risk events is totaled by location and combined.

B.

A risk score is computed based on the number of remediations needed compared to the industry peer average.

C.

Time to mitigate each identified risk is totaled, averaged, and tracked to show ongoing trends.

D.

A risk score is computed for each of the four stages of breach.

Full Access
Question # 23

What is the scale used to represent a users Zscaler Digital Experience (ZDX) score?

A.

1-100

B.

1-10

C.

1 - 1000

D.

0 - 50

Full Access
Question # 24

Which attack type is characterized by a commonly used website or service that has malicious content like malicious JavaScript running on it?

A.

Watering Hole Attack

B.

Pre-existing Compromise

C.

Phishing Attack

D.

Exploit Kits

Full Access
Question # 25

During the authentication process while accessing a private web application, how is the SAML assertion delivered to the service provider?

A.

HTTP Redirect on the browser

B.

API request/response sequence

C.

Through the client connector

D.

Form POST via the browser

Full Access
Question # 26

According to the Zero Trust Exchange Functional Services Diagram, which services does Antivirus belong to?

A.

Platform Services

B.

Access Control Services

C.

Security Services

D.

Advanced Threat Prevention Services

Full Access
Question # 27

Which of the following methods can be used to notify an end-user of a potential DLP violation in Zscaler’s Workflow Automation solution?

A.

Notifications in MS Teams / Slack

B.

SMS text message.

C.

Automated phone call.

D.

Twitter post with custom hashtag

Full Access
Question # 28

What is the default policy configuration setting for checking for Viruses?

A.

Allow

B.

Block

C.

Unwanted Applications

D.

Malware Protection

Full Access
Question # 29

Which command-line parameter is used to activate tamper proofing during the installation of Zscaler Client Connector?

A.

--secureInstall

B.

--antiTamper

C.

--disableTampering

D.

--enableAntiTampering

Full Access
Question # 30

What is the purpose of the Zscaler Client Connector providing the authentication token to the Zscaler Client Connector Portal after it is received from Zscaler Internet Access?

A.

To bypass multifactor authentication (MFA) during the enrollment process

B.

To immediately grant the user access to Zscaler Private Access resources

C.

To enable the portal to register the user’s device and pass the registration to Zscaler Internet Access

D.

To share the authentication token with the SAML IdP to validate the user session

Full Access
Question # 31

The Security Alerts section of the Alerts dashboard has a graph showing what information?

A.

Top 5 Malware Programs Detected

B.

Top 5 Viruses by Region

C.

Top 5 Threats by Systems Impacted

D.

Top 5 Unified Threat Yara Options

Full Access
Question # 32

Is SCIM required for ZIA?

A.

Depends

B.

Maybe

C.

No

D.

Yes

Full Access
Question # 33

An administrator needs to SSL inspect all traffic but one specific URL category. The administrator decides to create two policies, one to inspect all traffic and another one to bypass the specific category. What is the logical sequence in which they have to appear in the list?

A.

Both policies are incompatible, so it is not possible to have them together.

B.

First the policy for the exception Category, then further down the list the policy for the generic "inspect all."

C.

First the policy for the generic "inspect all", then further down the list the policy for the exception Category.

D.

All policies both generic and specific will be evaluated so no specific order is required.

Full Access
Question # 34

Which Risk360 key focus area observes a broad range of event, security configurations, and traffic flow attributes?

A.

External Attack Surface

B.

Prevent Compromise

C.

Data Loss

D.

Lateral Propagation

Full Access
Question # 35

Which of the following connects Zscaler users to the nearest Microsoft 365 servers for a better experience?

A.

Single DNS resolver with forwarders providing centralized results

B.

Private MPLS in each branch office providing connection

C.

Multiple distributed DNS resolvers providing local results

D.

Optimized TCP Scaling for maximum throughput of files

Full Access
Question # 36

What does a DLP Engine consist of?

A.

DLP Policies

B.

DLP Rules

C.

DLP dictionaries

D.

DLP identifiers

Full Access
Question # 37

A user has opened a support case to complain about poor user experience when trying to manage their AWS resources. How could a helpdesk administrator get a useful root cause analysis to help isolate the issue in the least amount of time?

A.

Check the Zscaler Trust page for any indications of cloud outages or incidents that would be causing a slowdown.

B.

Check the user's ZDX score for a period of low score for AWS and use Analyze Score to get the ZDX Y-Engine analysis.

C.

Do a Deep Trace on the user's traffic and check for excessive DNS resolution times and other slowdowns.

D.

Initiate a packet capture from Zscaler Client Connector and escalate the case to have the trace analyzed for root cause.

Full Access
Question # 38

Which of the following are types of device posture?

A.

Detect Crowdstrike, Crowdstrike ZTA score, First name

B.

Certificate Trust, File Path, Full Disk Encryption

C.

Domain Joined, Process Check, Deception Check

D.

Unauthorized Modification, OS Version, License Key

Full Access
Question # 39

Which of the following is unrelated to the properties of 'Trusted Networks'?

A.

DNS Server

B.

Default Gateway

C.

Org ID

D.

Network Range

Full Access
Question # 40

What can Zscaler Client Connector evaluate that provides the most thorough determination of the trust level of a device as criteria for an access policy enabling remote access to sensitive private applications?

A.

Client Type

B.

SCIM User Attributes

C.

Trusted Network

D.

Posture Profiles

Full Access
Question # 41

Which Advanced Threat Protection feature restricts website access by geographic location?

A.

Spyware Callback

B.

Botnet Protection

C.

Blocked Countries

D.

Browser Exploits

Full Access
Question # 42

What does Allow Cascading Enabled allow for?

A.

It ensures both Cloud App Control and URL Filtering Rules are applied.

B.

It ensures both Cloud App Control and File Type Control Rules are applied.

C.

It ensures both Cloud App Control and Bandwidth Control Rules are applied.

D.

It ensures both Cloud App Control and DLP Rules are applied.

Full Access
Question # 43

Which API architectural style is used by Zscaler for Zero Trust Automation?

A.

JSON-RPC

B.

SOAP

C.

GraphQL

D.

REST

Full Access
Question # 44

From a user perspective, Zscaler Bandwidth Control performs traffic shaping and buffering on what direction(s) of traffic?

A.

Outbound traffic is shaped. Inbound or localhost traffic is unshaped.

B.

Outbound or inbound traffic is shaped. Localhost traffic is unshaped.

C.

Inbound traffic is shaped. Outbound or localhost traffic is unshaped.

D.

Localhost traffic is shaped. Outbound or Inbound traffic is unshaped.

Full Access
Question # 45

Which of the following is an unsupported tunnel type?

A.

Generic Routing and Encapsulation (GRE)

B.

HTTP Connect Tunnels

C.

Proprietary Microtunnels

D.

Secure Socket Tunneling Protocol (SSTP)

Full Access