ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE4_FGT-7.2 All Questions

View all questions & answers for the NSE4_FGT-7.2 exam
Go to Exam

Exam NSE4_FGT-7.2 topic 1 question 6 discussion

Actual exam question from Fortinet's NSE4_FGT-7.2
Question #: 6
Topic #: 1
[All NSE4_FGT-7.2 Questions]

Refer to the exhibits.
The exhibits show the SSL and authentication policy (Exhibit A) and the security policy (Exhibit B) for Facebook.
Users are given access to the Facebook web application. They can play video content hosted on
Facebook, but they are unable to leave reactions on videos or other types of posts.


Which part of the policy configuration must you change to resolve the issue?

  • A. Force access to Facebook using the HTTP service.
  • B. Make the SSL inspection a deep content inspection.
  • C. Add Facebook in the URL category in the security policy.
  • D. Get the additional application signatures required to add to the security policy.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by mohdroos1 at Jan. 1, 2023, 2:25 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
santi1509
Highly Voted 1 year, 10 months ago
Selected Answer: B
Necesita realizar una inspección profunda de las acciones que se están haciendo en la página de Facebook para poder denegar las reacciones.
upvoted 5 times
...
ADR7
Most Recent 7 months ago
Remember that HTTPS ('S' = security) so that's why it is needed to enable full inspection)
upvoted 1 times
...
learner2024
7 months, 2 weeks ago
how do u know it it is encrypted ? is there a sign that shows reaction is encrypted here that requires deep inspection?
upvoted 1 times
NickTeaming
6 months, 1 week ago
All facebook content is encrypted by default (HTTPS)
upvoted 1 times
...
...
Ygrec
10 months, 2 weeks ago
B FortiGate needs to perform full SSL inspection. Without full SSL inspection, FortiGate cannot inspect encrypted traffic.
upvoted 2 times
...
GeniusA
1 year ago
B is the correct answer
upvoted 1 times
...
raydel92
1 year, 3 months ago
Selected Answer: B
B. Make the SSL inspection a deep content inspection. Reference and download study guide: https://ebin.pub/fortinet-fortigate-security-study-guide-for-fortios-72.html
upvoted 4 times
lakis789
1 year, 3 months ago
Hey raydel92, Have you given the exam ?
upvoted 1 times
...
...
Slash_JM
1 year, 4 months ago
Selected Answer: B
FortiGate Security 7.2 Study Guide p.233 FortiGate needs to perform full SSL inspection. Without full SSL inspection, FortiGate cannot inspect encrypted traffic.
upvoted 2 times
...
AhmedZkry
1 year, 5 months ago
Selected Answer: B
Correct is B
upvoted 2 times
...
PaulGo
1 year, 8 months ago
Selected Answer: B
Correct: B
upvoted 1 times
...
Miico
1 year, 9 months ago
Selected Answer: B
B is correct
upvoted 1 times
...
[Removed]
1 year, 10 months ago
Selected Answer: B
B is correct Because the SSL Inspection is set to Certificate-Inspection, it must be set to Deep-inspection
upvoted 1 times
...
zeebo340
1 year, 11 months ago
Answer is B - They can play video (tick) content hosted on Facebook, but they are unable to leave reactions on videos or other types of posts. This indicate that the rule are partially working as they can watch video but cant react, i.e. liking the content. So must be an issue with the SSL inspection rather then adding an app rule.
upvoted 4 times
...
mohdroos1
1 year, 12 months ago
Selected Answer: B
needs ssl full inspection
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago