exam questions

Exam FCSS_SASE_AD-23 All Questions

View all questions & answers for the FCSS_SASE_AD-23 exam

Exam FCSS_SASE_AD-23 topic 1 question 28 discussion

Actual exam question from Fortinet's FCSS_SASE_AD-23
Question #: 28
Topic #: 1
[All FCSS_SASE_AD-23 Questions]

Which two additional components does FortiSASE use for application control to act as an inline-CASB? (Choose two.)

  • A. intrusion prevention system (IPS)
  • B. SSL deep inspection
  • C. DNS filter
  • D. Web filter with inline-CASB
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
2283da3
1 week, 4 days ago
Selected Answer: AB
https://docs.fortinet.com/document/fortisase/latest/administration-guide/205318/application-control-with-inline-casb FortiSASE can recognize network traffic that a large number of applications generate. Application Control With Inline-cloud access security broker (Inline-CASB) uses Intrusion Prevention System (IPS) protocol decoders that can analyze network traffic to detect application traffic, even if the traffic uses non-standard ports or protocols. Application Control With Inline-CASB supports traffic detection using the HTTP protocol (versions 1.0, 1.1, and 2.0). FortiSASE uses Application Control and SSL deep inspection to act as an Inline-CASB by providing access control to software-as-a-service (SaaS) cloud application traffic. A CASB sits between users and their cloud service to enforce security policies as they access cloud-based resources.
upvoted 1 times
...
ad87
3 weeks, 4 days ago
Selected Answer: AB
I think letter A & B, are correct!
upvoted 1 times
...
Dogbert
4 weeks ago
Selected Answer: BD
Pg 119 of the 23 guide, bullet 2 in the graphic says FSASE uses web filter and SSL inspection with inline-security component to customize http headers. In the text below though it mentions IPS protocol decoders.
upvoted 1 times
...
fa7474b
1 month, 2 weeks ago
Selected Answer: AB
Very confusing almost trick question. It's A because they are asking about application control w/inline- CASB NOT Web filtering w/inline CASB. These are two totally separate features you can enable/disable independently, so App control does not rely on web filter for it's analysis. Page 75 of the v24 study guide says that App control w/CASB relies on the IPS procol decoders. Page 82 of the the v24 study guide shows that BOTH app control and web filter need Deep inspection so B is correct.
upvoted 1 times
...
kashir
1 month, 2 weeks ago
Selected Answer: BD
A - IPS is not correct because question is asking about in-line CASB C - DNS filter is also incorrect.
upvoted 1 times
...
claumagagnotti
2 months, 2 weeks ago
Selected Answer: BD
FortiSASE_24_Administrator_Study_Guide-Online.pdf, page 82, Se menciona en la página 82 del documento, indicando que la inspección profunda de SSL es necesaria para la funcionalidad de CASB en línea y el control de aplicaciones page 85-86 se explica que el filtro web de FortiSASE con CASB en línea se usa para controlar el acceso y filtrar aplicaciones SaaS page 90 FortiSASE detecta y controla el tráfico de aplicaciones utilizando el CASB en línea
upvoted 2 times
...
sven22
4 months, 2 weeks ago
Selected Answer: AB
AB is correct
upvoted 1 times
...
GCISystemIntegrator
5 months ago
Selected Answer: AB
IPS protocol decode and analyze network trafficto detect application traffic. SSL deep inspection to control SaaS cloud application
upvoted 1 times
...
jdubyah_
5 months, 1 week ago
Selected Answer: AB
@lalbrecht is correct: A and B per
upvoted 2 times
...
lalbrecht
5 months, 3 weeks ago
Selected Answer: AB
A and B are correct:
upvoted 2 times
...
jdubyah_
5 months, 3 weeks ago
Selected Answer: BD
B and D per p.119 of the FortiSASE 23 Administrator Guide.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago