Which part of the policy configuration must you change to resolve the issue?

FCP_FGT_AD-7.4 0 Comments

Refer to the exhibits.

The exhibits show the SSL and authentication policy (Exhibit A) and the security policy (Exhibit B) for Facebook.

Users are given access to the Facebook web application. They can play video content hosted on Facebook, but they are unable to leave reactions on videos or other types of posts.

Which part of the policy configuration must you change to resolve the issue?
A . Force access to Facebook using the HTTP service.
B . Make the SSL inspection a deep content inspection.
C . Add Facebook in the URL category in the security policy.
D . Get the additional application signatures required to add to the security policy.

Answer: B

Explanation:

Needs SSL full inspection.

They can play video (tick) content hosted on Facebook, but they are unable to leave reactions on videos or other types of posts.

This indicate that the rule are partially working as they can watch video but can’t react, i.e. liking the content. So, must be an issue with the SSL inspection rather then adding an app rule.

The lock logo behind Facebook_like.Button indicates that SSL Deep Inspection is Required. All other Application Signatures Facebook and Facebook_Video.Play does not require SSL inspection. Hence that the users can play video content. If you look up the Application Signature for Facebook_like.Button it will say "Requires SSL Deep Inspection".

FortiGate needs to perform full SSL inspection. Without full SSL inspection, FortiGate cannot inspect encrypted traffic.

Latest FCP_FGT_AD-7.4 Dumps Valid Version with 200 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download FCP_FGT_AD-7.4 PDF    FCP_FGT_AD-7.4 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments