Exam FCSS_SASE_AD-23 topic 1 question 28 discussion

https://docs.fortinet.com/document/fortisase/latest/administration-guide/205318/application-control-with-inline-casb FortiSASE can recognize network traffic that a large number of applications generate. Application Control With Inline-cloud access security broker (Inline-CASB) uses Intrusion Prevention System (IPS) protocol decoders that can analyze network traffic to detect application traffic, even if the traffic uses non-standard ports or protocols. Application Control With Inline-CASB supports traffic detection using the HTTP protocol (versions 1.0, 1.1, and 2.0). FortiSASE uses Application Control and SSL deep inspection to act as an Inline-CASB by providing access control to software-as-a-service (SaaS) cloud application traffic. A CASB sits between users and their cloud service to enforce security policies as they access cloud-based resources.

I think letter A & B, are correct!

Pg 119 of the 23 guide, bullet 2 in the graphic says FSASE uses web filter and SSL inspection with inline-security component to customize http headers. In the text below though it mentions IPS protocol decoders.

Very confusing almost trick question. It's A because they are asking about application control w/inline- CASB NOT Web filtering w/inline CASB. These are two totally separate features you can enable/disable independently, so App control does not rely on web filter for it's analysis. Page 75 of the v24 study guide says that App control w/CASB relies on the IPS procol decoders. Page 82 of the the v24 study guide shows that BOTH app control and web filter need Deep inspection so B is correct.

A - IPS is not correct because question is asking about in-line CASB C - DNS filter is also incorrect.

FortiSASE_24_Administrator_Study_Guide-Online.pdf, page 82, Se menciona en la página 82 del documento, indicando que la inspección profunda de SSL es necesaria para la funcionalidad de CASB en línea y el control de aplicaciones page 85-86 se explica que el filtro web de FortiSASE con CASB en línea se usa para controlar el acceso y filtrar aplicaciones SaaS page 90 FortiSASE detecta y controla el tráfico de aplicaciones utilizando el CASB en línea

AB is correct

IPS protocol decode and analyze network trafficto detect application traffic. SSL deep inspection to control SaaS cloud application

@lalbrecht is correct: A and B per

A and B are correct:

B and D per p.119 of the FortiSASE 23 Administrator Guide.