View all questions & answers for the FCSS - FortiSASE 25 Administrator Exam Materials exam


Question 52 Discussion

Which two components are part of onboarding a secure web gateway (SWG) endpoint for secure internet access (SIA)? (Choose two answers)

  • A. proxy auto-configuration (PAC) file
  • B. FortiSASE certificate authority (CA) certificate
  • C. FortiClient software
  • D. tunnel policy
Correct Answer: A,B

Brave-Dump Clients Votes

AB 100%

Comments



Taz 2025-11-02 12:38:04

Selected Answers: A, B


The correct answers are A. proxy auto-configuration (PAC) file and B. FortiSASE certificate authority (CA) certificate.

Explanation:

Proxy auto-configuration (PAC) file: This file tells the user's device how to connect to the proxy server, directing internet traffic through the Secure Web Gateway (SWG) for inspection and filtering.


FortiSASE certificate authority (CA) certificate: This certificate is used to verify the identity of the FortiSASE server, allowing the endpoint to trust and communicate securely with it.


Why other options are incorrect:


FortiClient software: While FortiClient can be used for secure internet access (SIA), it is not always necessary for onboarding an endpoint. Some methods of onboarding, like agentless deployment, do not require FortiClient installation.


Tunnel policy: A tunnel policy defines how traffic is encrypted and routed through the VPN, but it's not specifically part of the onboarding process for an SWG endpoint. Tunnel policies are more related to the overall VPN configuration