Valid FCSS_EFW_AD-7.6 Dumps shared by EduDump.com for Helping Passing FCSS_EFW_AD-7.6 Exam! EduDump.com now offer the newest FCSS_EFW_AD-7.6 exam dumps, the EduDump.com FCSS_EFW_AD-7.6 exam questions have been updated and answers have been corrected get the newest EduDump.com FCSS_EFW_AD-7.6 dumps with Test Engine here:
A user reports that their computer was infected with malware after accessing a secured HTTPS website. However, when the administrator checks the FortiGate logs, they do not see that the website was detected as insecure despite having an SSL certificate and correct profiles applied on the policy. How can an administrator ensure that FortiGate can analyze encrypted HTTPS traffic on a website?
Correct Answer: D
FortiGate, like other security appliances, cannot analyze encrypted HTTPS traffic unless it decrypts it first. If only certificate inspection is enabled, FortiGate can see the certificate details (such as the domain and issuer) but cannot inspect the actual web content. To fully analyze the traffic and detect potential malware threats: * Full SSL inspection (Deep Packet Inspection) must be enabled in the SSL/SSH Inspection Profile. * This allows FortiGate to decrypt the HTTPS traffic, inspect the content, and then re-encrypt it before forwarding it to the user. * Without full SSL inspection, threats embedded in encrypted traffic may go undetected.