ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE4_FGT-7.2 All Questions

View all questions & answers for the NSE4_FGT-7.2 exam
Go to Exam

Exam NSE4_FGT-7.2 topic 1 question 82 discussion

Actual exam question from Fortinet's NSE4_FGT-7.2
Question #: 82
Topic #: 1
[All NSE4_FGT-7.2 Questions]

A network administrator has enabled full SSL inspection and web filtering on FortiGate. When visiting any HTTPS websites, the browser reports certificate warning errors. When visiting HTTP websites, the browser does not report errors.

What is the reason for the certificate warning errors?

  • A. The matching firewall policy is set to proxy inspection mode.
  • B. The certificate used by FortiGate for SSL inspection does not contain the required certificate extensions.
  • C. The full SSL inspection feature does not have a valid license.
  • D. The browser does not trust the certificate used by FortiGate for SSL inspection.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by lupnoob at July 16, 2023, 2:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
raydel92
1 year, 7 months ago
Selected Answer: D
D. The browser does not trust the certificate used by FortiGate for SSL inspection. FortiGate Security 7.2 Study Guide (p.235): "If FortiGate receives a trusted SSL certificate, then it generates a temporary certificate signed by the built-in Fortinet_CA_SSL certificate and sends it to the browser. If the browser trusts the Fortinet_CA_SSL certificate, the browser completes the SSL handshake. Otherwise, the browser also presents a warning message informing the user that the site is untrusted. In other words, for this function to work as intended, you must import the Fortinet_CA_SSL certificate into the trusted root CA certificate store of your browser." Reference and download study guide: https://ebin.pub/fortinet-fortigate-security-study-guide-for-fortios-72.html
upvoted 2 times
...
Halmonte0780
1 year, 9 months ago
D is the Answer. Fortigate Security 7.2 page 235
upvoted 2 times
...
Takumi
1 year, 9 months ago
Selected Answer: D
The answer is D
upvoted 1 times
...
lupnoob
1 year, 9 months ago
Selected Answer: D
Yep, the answer is D.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago