NSK101 · Question #22
NSK101 Question #22: Real Exam Question with Answer & Explanation
The correct answer is A. An exception should be added to the steering configuration.. When working with traffic from applications with pinned certificates, you should add an exception to the steering configuration to bypass them. Pinned certificates are a security technique that prevents man-in-the-middle attacks by validating the server certificates against a har
Question
Options
- AAn exception should be added to the steering configuration.
- BThe domains used by certificate-pinned applications should be added to the authentication
- CTraffic with pinned certificates should be blocked.
- DThe domains used by applications with pinned certificates should be allowed in an inline policy.
Explanation
When working with traffic from applications with pinned certificates, you should add an exception to the steering configuration to bypass them. Pinned certificates are a security technique that prevents man-in-the-middle attacks by validating the server certificates against a hardcoded list of certificates in the application. If you try to intercept or inspect the traffic from such applications, they will reject the connection or display an error message. Therefore, you should add the domains used by certificate-pinned applications as exceptions in your steering configuration, so that they are not steered to Netskope for analysis and enforcement.
Community Discussion
No community discussion yet for this question.