NGFW-ENGINEER · Question #73
NGFW-ENGINEER Question #73: Real Exam Question with Answer & Explanation
Sign in or unlock NGFW-ENGINEER to reveal the answer and full explanation for question #73. The question stem and answer options stay visible for context.
Question
A company is enabling SSL Forward Proxy to inspect encrypted traffic. A security engineer generates a new certificate on the firewall and flags it with the "Forward Trust" certificate property. What is the critical next step that must be performed for decryption to function correctly without causing security warnings for end users?
Options
- ASet the forward trust certificate as the SSL/TLS Service profile for the management interface.
- BCreate a Security policy rule that allows traffic from the certificate of the firewall to all the zones.
- CImport the private key of the forward trust certificate onto the domain controller.
- DInstall the public portion of the forward trust certificate into the trust store of all client machines.
Unlock NGFW-ENGINEER to see the answer
You've previewed enough free NGFW-ENGINEER questions. Unlock NGFW-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.