There is an increased amount of traffic on the network and for compliance reasons, management needs visibility into the encrypted traffic. What is a result of enabling TLS/SSL decryption to allow this visibility?
A.
It prompts the need for a corporate managed certificate.
B.
It will fail if certificate pinning is not enforced.
A. Perhaps this is correct, but I am not sure if it needs to be “corporately managed”. What is needed is a CA certificate to present to the client on behalf of the server.
B. Not possible.
C. Not possible. Firewall decryption usually consumes a very large amount of memory, and even if you strictly limit the traffic to be decrypted, you will still need to use one or two higher models.
D. Not possible. Law and company policy should be carefully considered when decrypting traffic.
See the following document for details.
https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/device-config/720/management-center-device-config -72/encrypted-traffic-overview.html?bookSearch=true
Translated with DeepL.com (free version)
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.300-710 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
tinyJoe
7 months ago