Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
C & D correct. FortiGate_Security_6.4 page 369
"NGFW policy based mode, you must configure a few policies to allow traffic:
SSL inspection & Authentication, Security policy"
C&D
Security policies work with SSL Inspection & Authentication policies to inspect traffic. To allow traffic from a specific user or user group, both Security and SSL Inspection & Authentication policies must be configured.
https://docs.fortinet.com/document/fortigate/6.4.0/administration-guide/978598/profile-based-ngfw-vs-policy-based-ngfw
C & D are the correct answers by Fortigate_Security_7.0(New Version) page 369. If you are using Policy Based Mode, SSL Inspection & Authentication (consolidated) and Security Policy are required to allow traffic.
Security policies work with SSL Inspection & Authentication policies to inspect traffic. To allow traffic from a specific user or user group, both Security and SSL Inspection & Authentication policies must be configured. A default SSL Inspection & Authentication policy with the certificate-inspection SSL Inspection profile is preconfigured. Traffic will match the SSL Inspection & Authentication policy first. If the traffic is allowed, packets are sent to the IPS engine for application, URL category, user, and user group match, and then, if enabled, UTM inspection (antivirus, IPS, DLP, and email filter) is performed.
A and B are correct. C is incorrect. Security policy has no sense. It's Security Profile.
D is incorrect. SSL inspection and authentication policy are not mandatory. They are optional.
Maybe.
Exactly as Lionardo explained, it's in the Study Guide, very explicitly! So just an innocent question though, you hope we pay for custom view, and still apply no effort in correcting the answers, where is the value in that???
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Lionardo
Highly Voted 3 years agomahmoudlol
Highly Voted 2 years, 12 months agoIbrahimadwan
Most Recent 11 months, 1 week agoatiles05
1 year, 8 months agoCalH
2 years agogboy91
2 years, 1 month agodownlife
2 years, 2 months agomalikgen
2 years, 2 months agolrosadini
2 years, 2 months agoAbdiAden
2 years, 2 months agoplatontw
2 years, 3 months agoblvackhammer
2 years, 3 months agokkched
2 years, 3 months agoMrSaintz
2 years, 4 months agoNIGHTELF7
2 years, 4 months agomrtim5700
2 years, 4 months agostampaprints
2 years, 4 months ago