Palo Alto Networks NGFWs can queryLDAP directories(such as Active Directory) to validate whether submitted credentials match the corporate directory.
Domain Credential Filter (Answer C):
TheDomain Credential Filterfeature ensures that submitted credentials are checked against valid corporate credentials, preventing credential misuse.
Why Not A:
Group mappingis used to identify user groups for policy enforcement but does not validate submitted credentials.
Why Not D:
WMI client probingis used for user identification but is not a method for validating submitted credentials.
References from Palo Alto Networks Documentation:
Credential Theft Prevention
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit