Select the best answer for each question.
1. Prisma Access is Palo Alto Networks' implementation of which cloud security architecture model?
2. Which component in the Prisma Access architecture is primarily responsible for inspecting traffic and enforcing security policies?
3. What is the primary function of a Service Connection in Prisma Access?
4. Which Palo Alto Networks management platform is commonly used to configure and manage Prisma Access, especially by existing customers?
5. What is the mandatory logging destination for Prisma Access?
6. Which GlobalProtect component authenticates the user initially and provides the client configuration, including the list of gateways?
7. What is the primary factor the GlobalProtect client uses by default to select the "best" available Prisma Access gateway?
8. Which authentication method is generally recommended for integrating GlobalProtect with modern cloud Identity Providers like Azure AD or Okta?
9. If you configure GlobalProtect split tunneling to *exclude* traffic destined for `*.example.com`, what happens to that traffic?
10. What GlobalProtect feature allows Prisma Access to assess the security posture of the connecting endpoint (e.g., OS version, AV status)?