Free Preparation Discussions
MENU
Fortinet FCSS_SASE_AD-23 Exam Questions
- Fortinet Certified Solution Specialist Certifications
- Fortinet FCSS Fortinet Certified Solution Specialist Secure Access Service Edge Certifications
- Topic 1: SASE architecture and components: In this section, the focus is on integrating FortiSASE in a hybrid network, identifying FortiSASE components, and constructing FortiSASE deployment cases.
- Topic 2: SASE deployment: In this section, the focus is given to implementing various types of user onboarding methods, configuring SASE administration settings, and setting up security posture checks and compliance rules.
- Topic 3: SIA, SSA, and SPA: In this section, the focus is given to the design of security profiles to perform content inspection, and implement SD-WAN using FortiSASE, and ZTNA.
- Topic 4: Analytics: In this section, the focus is given to identifying potential security threats using FortiSASE logs, configuring dashboards, FortiView and logging settings, and analyzing reports for user traffic and security issues.
Free Fortinet FCSS_SASE_AD-23 Exam Actual Questions
Note: Premium Questions for FCSS_SASE_AD-23 were last updated On Jan. 22, 2025 (see below)
An organization wants to block all video and audio application traffic but grant access to videos from CNN Which application override action must you configure in the Application Control with Inline-CASB?
To block all video and audio application traffic while granting access to videos from CNN, you need to configure an application override action in the Application Control with Inline-CASB. Here is the step-by-step detailed explanation:
Application Control Configuration:
Application Control is used to identify and manage application traffic based on predefined or custom application signatures.
Inline-CASB (Cloud Access Security Broker) extends these capabilities by allowing more granular control over cloud applications.
Blocking Video and Audio Applications:
To block all video and audio application traffic, you can create a policy within Application Control to deny all categories related to video and audio streaming.
Granting Access to Specific Videos (CNN):
To allow access to videos from CNN specifically, you must create an override rule within the same Application Control profile.
The override action 'Exempt' ensures that traffic to specified URLs (such as those from CNN) is not subjected to the blocking rules set for other video and audio traffic.
Configuration Steps:
Navigate to the Application Control profile in the FortiSASE interface.
Set the application categories related to video and audio streaming to 'Block.'
Add a new override entry for CNN video traffic and set the action to 'Exempt.'
FortiOS 7.2 Administration Guide: Detailed steps on configuring Application Control and Inline-CASB.
Fortinet Training Institute: Provides scenarios and examples of using Application Control with Inline-CASB for specific use cases.
An organization needs to resolve internal hostnames using its internal rather than public DNS servers for remotely connected endpoints. Which two components must be configured on FortiSASE to achieve this? (Choose two.)
To resolve internal hostnames using internal DNS servers for remotely connected endpoints, the following two components must be configured on FortiSASE:
Split DNS Rules:
Split DNS allows the configuration of specific DNS queries to be directed to internal DNS servers instead of public DNS servers.
This ensures that internal hostnames are resolved using the organization's internal DNS infrastructure, maintaining privacy and accuracy for internal network resources.
Split Tunneling Destinations:
Split tunneling allows specific traffic (such as DNS queries for internal domains) to be routed through the VPN tunnel while other traffic is sent directly to the internet.
By configuring split tunneling destinations, you can ensure that DNS queries for internal hostnames are directed through the VPN to the internal DNS servers.
FortiOS 7.2 Administration Guide: Provides details on configuring split DNS and split tunneling for VPN clients.
FortiSASE 23.2 Documentation: Explains the implementation and configuration of split DNS and split tunneling for securely resolving internal hostnames.
An organization wants to block all video and audio application traffic but grant access to videos from CNN Which application override action must you configure in the Application Control with Inline-CASB?
To block all video and audio application traffic while granting access to videos from CNN, you need to configure an application override action in the Application Control with Inline-CASB. Here is the step-by-step detailed explanation:
Application Control Configuration:
Application Control is used to identify and manage application traffic based on predefined or custom application signatures.
Inline-CASB (Cloud Access Security Broker) extends these capabilities by allowing more granular control over cloud applications.
Blocking Video and Audio Applications:
To block all video and audio application traffic, you can create a policy within Application Control to deny all categories related to video and audio streaming.
Granting Access to Specific Videos (CNN):
To allow access to videos from CNN specifically, you must create an override rule within the same Application Control profile.
The override action 'Exempt' ensures that traffic to specified URLs (such as those from CNN) is not subjected to the blocking rules set for other video and audio traffic.
Configuration Steps:
Navigate to the Application Control profile in the FortiSASE interface.
Set the application categories related to video and audio streaming to 'Block.'
Add a new override entry for CNN video traffic and set the action to 'Exempt.'
FortiOS 7.2 Administration Guide: Detailed steps on configuring Application Control and Inline-CASB.
Fortinet Training Institute: Provides scenarios and examples of using Application Control with Inline-CASB for specific use cases.
An organization needs to resolve internal hostnames using its internal rather than public DNS servers for remotely connected endpoints. Which two components must be configured on FortiSASE to achieve this? (Choose two.)
To resolve internal hostnames using internal DNS servers for remotely connected endpoints, the following two components must be configured on FortiSASE:
Split DNS Rules:
Split DNS allows the configuration of specific DNS queries to be directed to internal DNS servers instead of public DNS servers.
This ensures that internal hostnames are resolved using the organization's internal DNS infrastructure, maintaining privacy and accuracy for internal network resources.
Split Tunneling Destinations:
Split tunneling allows specific traffic (such as DNS queries for internal domains) to be routed through the VPN tunnel while other traffic is sent directly to the internet.
By configuring split tunneling destinations, you can ensure that DNS queries for internal hostnames are directed through the VPN to the internal DNS servers.
FortiOS 7.2 Administration Guide: Provides details on configuring split DNS and split tunneling for VPN clients.
FortiSASE 23.2 Documentation: Explains the implementation and configuration of split DNS and split tunneling for securely resolving internal hostnames.
An organization wants to block all video and audio application traffic but grant access to videos from CNN Which application override action must you configure in the Application Control with Inline-CASB?
To block all video and audio application traffic while granting access to videos from CNN, you need to configure an application override action in the Application Control with Inline-CASB. Here is the step-by-step detailed explanation:
Application Control Configuration:
Application Control is used to identify and manage application traffic based on predefined or custom application signatures.
Inline-CASB (Cloud Access Security Broker) extends these capabilities by allowing more granular control over cloud applications.
Blocking Video and Audio Applications:
To block all video and audio application traffic, you can create a policy within Application Control to deny all categories related to video and audio streaming.
Granting Access to Specific Videos (CNN):
To allow access to videos from CNN specifically, you must create an override rule within the same Application Control profile.
The override action 'Exempt' ensures that traffic to specified URLs (such as those from CNN) is not subjected to the blocking rules set for other video and audio traffic.
Configuration Steps:
Navigate to the Application Control profile in the FortiSASE interface.
Set the application categories related to video and audio streaming to 'Block.'
Add a new override entry for CNN video traffic and set the action to 'Exempt.'
FortiOS 7.2 Administration Guide: Detailed steps on configuring Application Control and Inline-CASB.
Fortinet Training Institute: Provides scenarios and examples of using Application Control with Inline-CASB for specific use cases.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Yan
2 days agoTiera
8 days agoFlo
1 months agoCelestina
1 months agoKallie
2 months agoKristeen
2 months agoAllene
2 months agoAltha
3 months agoMyra
3 months agoCathrine
3 months agoFelton
4 months agoClaribel
4 months agoGail
4 months agoArminda
4 months agoLeanna
5 months agoMarquetta
5 months agoFiliberto
5 months agoFlo
7 months ago