ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam FCSS_SASE_AD-23 All Questions

View all questions & answers for the FCSS_SASE_AD-23 exam
Go to Exam

Exam FCSS_SASE_AD-23 topic 1 question 5 discussion

Actual exam question from Fortinet's FCSS_SASE_AD-23
Question #: 5
Topic #: 1
[All FCSS_SASE_AD-23 Questions]

Refer to the exhibits.



A FortiSASE administrator has configured an antivirus profile in the security profile group and applied it to the internet access policy. Remote users are still able to download the eicar.com-zip file from https://eicar.org. Traffic logs show traffic is allowed by the policy.
Which configuration on FortiSASE is allowing users to perform the download?

  • A. Web filter is allowing the traffic.
  • B. IPS is disabled in the security profile group.
  • C. The HTTPS protocol is not enabled in the antivirus profile.
  • D. Force certificate inspection is enabled in the policy.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by lalbrecht at Oct. 30, 2024, 9:42 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rac_sp
1 month ago
Selected Answer: D
Force Certificate Inspection: When enable, this policy ignores the SSL inspection mode specified in the profile groupg and users certificate inspection. Page 60 Study Guide version 24
upvoted 1 times
...
throwaway4
2 months ago
Selected Answer: D
If you're forcing cert inspection, that means you're not doing deep https inspection, which means you'd pull down that eicar file.
upvoted 1 times
...
sven22
4 months, 2 weeks ago
Selected Answer: D
When this is checked, WebFiltering will not work on the policy.
upvoted 2 times
...
Nappel
4 months, 2 weeks ago
Selected Answer: D
https://community.fortinet.com/t5/FortiSASE/Technical-Tip-Force-Certificate-Inspection-option-in-FortiSASE/ta-p/302617
upvoted 2 times
...
jdubyah_
5 months, 2 weeks ago
Selected Answer: D
D
upvoted 1 times
...
lalbrecht
5 months, 3 weeks ago
Selected Answer: D
D is correct.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago