A security architect is onboarding a new EDR agent on servers that traditionally do not have internet access. In order for the agent to receive updates and report back to the management console, some changes must be made. Which of the following should the architect do to best accomplish this requirement? (Choose two.)
Correct Answer: A,C
Create a firewall rule to only allow traffic from the subnet to the internet via a proxy ensures that the servers can connect to the internet through a controlled channel, allowing the EDR agent to get updates and report back securely.
Configure a proxy policy that allows only fully qualified domain names needed to communicate to a portal ensures that the agent can reach only the necessary services for updates and reporting, minimizing exposure and enhancing security by limiting access to only trusted domains.