NETSEC-GENERALIST · Question #18
NETSEC-GENERALIST Question #18: Real Exam Question with Answer & Explanation
The correct answer is A: Encrypted private key and certificate (PKCS12). Before deploying server certificates from a trusted third-party Certificate Authority (CA) for GlobalProtect components, two critical pieces of information are required: Encrypted Private Key and Certificate (PKCS12) ( Correct) The PKCS12 (.p12 or .pfx) file contains the private
Question
Which two pieces of information are needed prior to deploying server certificates from a trusted third-party certificate authority (CA) to GlobalProtect components? (Choose two.)
Options
- AEncrypted private key and certificate (PKCS12)
- BSubject Alternative Name (SAN)
- CCertificate and key files
- DPassphrase for private key
Explanation
Before deploying server certificates from a trusted third-party Certificate Authority (CA) for GlobalProtect components, two critical pieces of information are required: Encrypted Private Key and Certificate (PKCS12) ( Correct) The PKCS12 (.p12 or .pfx) file contains the private key and certificate in an encrypted format. This ensures secure installation of the certificate on GlobalProtect portals and gateways. Subject Alternative Name (SAN) ( Correct) The SAN field in the certificate ensures that it supports multiple domain names and IP addresses. Necessary for GlobalProtect clients to trust the server certificate when connecting to different GlobalProtect portals or gateways.
Topics
Community Discussion
No community discussion yet for this question.