1. Home
  2. Discussions
  3. Fortinet
  4. Fortinet Certified Professional Network Security
  5. FCSS_EFW_AD-7.4 Discussions
  6. FCSS_EFW_AD-7.4 Exam Topic 1 Question 9 Discussion

Fortinet FCSS - Enterprise Firewall 7.4 Administrator FCSS_EFW_AD-7.4 Question # 9 Topic 1 Discussion

 Fortinet Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Fortinet FCSS - Enterprise Firewall 7.4 Administrator FCSS_EFW_AD-7.4 Question # 9 Topic 1 Discussion

FCSS_EFW_AD-7.4 Exam Topic 1 Question 9 Discussion:
Question #: 9
Topic #: 1

A vulnerability scan report has revealed that a user has generated traffic to the website example.com (10.10.10.10) using a weak SSL/TLS version supported by the HTTPS web server.

What can the firewall administrator do to block all outdated SSL/TLS versions on any HTTPS web server to prevent possible attacks on user traffic?
A.

Configure the unsupported SSL version and set the minimum allowed SSL version in the HTTPS settings of the SSL/SSH inspection profile.

B.

Enable auto-detection of outdated SSL/TLS versions in the SSL/SSH inspection profile to block vulnerable websites.

C.

Install the required certificate in the client's browser or use Active Directory policies to block specific websites as defined in the SSL/SSH inspection profile.

D.

Use the latest certificate, Fortinet_SSL_ECDSA256, and replace the CA certificate in the SSL/SSH inspection profile.

Get Premium FCSS_EFW_AD-7.4 Questions
Actual exam question for Fortinet FCSS_EFW_AD-7.4 exam by Zephyr12599 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next