Netskope Exam NSK300 Topic 2 Question 22 Discussion

Actual exam question for Netskope's NSK300 exam

Question #: 22
Topic #: 2

You created a Real-time Protection policy that blocks all activities to non-corporate S3 buckets, but determine that the policy is too restrictive. Specifically, users are complaining that normal websites have stopped rendering properly.

How would you solve this problem?

ACreate a Real-time Protection policy to allow the Browse activity to the Amazon S3 application.

BCreate a Real-time Protection policy to allow the Browse activity to the Cloud Storage category

CCreate a Real-time Protection policy to allow the Download activity to the Cloud Storage category

DCreate a Real-time Protection policy to allow the Download activity to the Amazon S3 application

Show Suggested Answer

Suggested Answer: B

To solve the problem of normal websites not rendering properly due to a Real-time Protection policy that blocks all activities to non-corporate S3 buckets, the best solution is tocreate a Real-time Protection policy to allow the Browse activity to the Cloud Storage category. This approach will enable users to view content from various cloud storage services, including Amazon S3, without allowing full access to non-corporate S3 buckets.It's a more granular and less restrictive policy that allows necessary browsing activities while still maintaining control over the upload and download activities to non-corporate buckets1.

by Lindsey at Oct 18, 2024, 02:12 PM

Limited Time Offer

25%

Off

Get Premium NSK300 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Art

23 hours ago

I'd go with Option B as well. Blocking all non-corporate S3 buckets is a bit too extreme, and Option B should provide a more balanced solution.

upvoted 0 times

...

Estrella

13 days ago

Option B seems like the way to go. Allowing the Browse activity to the Cloud Storage category should fix the rendering issues without compromising the overall security policy.

upvoted 0 times

...

Tawna

24 days ago

I agree with Britt, option A seems like the most appropriate choice to address the issue.

upvoted 0 times

...

Britt

25 days ago

I think option A is the best solution because it allows browsing activity to the Amazon S3 application.

upvoted 0 times

...