A.  

To provide access to private applications using the bookmark portal

B.  

To provide device compliance checks using ZTNA tags

C.  

To secure internet traffic for branch users

D.  

To manage branch location endpoints

A.  

sanctioned and unsanctioned Software-as-a-Service (SaaS) applications usage

B.  

FortiClient vulnerability assessment

C.  

SD-WAN performance

D.  

FortiSASE administrator and system events

A.  

Certificate inspection is not being used to scan application traffic.

B.  

Deep inspection is not being used to scan traffic.

C.  

The private access policy must be to set to log Security Events.

D.  

The inline-CASB application control profile does not have application categories set to Monitor.

A.  

Only endpoints assigned a profile for sandbox detection will be processed by the sandbox feature.

B.  

FortiClient quarantines only infected files that FortiSandbox detects as medium level.

C.  

All files executed on a USB drive will be sent to FortiSandbox for analysis.

D.  

All files will be sent to a on-premises FortiSandbox for inspection.

A.  

application control with inline-CASB

B.  

data loss prevention (DLP) with Microsoft Purview Information Protection (MPIP)

C.  

web filter with inline-CASB

D.  

DNS filter with domain filter

A.  

It has limited visibility when data is transmitted.

B.  

It detects data in motion.

C.  

It is placed outside the traffic path.

D.  

It relies on API to integrate with cloud services.

A.  

The vulnerability will be patched automatically based on the endpoint profile configuration.

B.  

The vulnerability will be patched by installing the patch from the vendor’s website.

C.  

The end user will patch the vulnerabilities using the FortiClient software.

D.  

An administrator will patch the vulnerability remotely using FortiSASE.

A.  

Agentless remote user internet access

B.  

Site-based remote user internet access

C.  

SIA using ZTNA

D.  

SIA for FortiClient agent remote users

A.  

It secures traffic from endpoints to cloud applications.

B.  

It uses the FortiCloud organizational units to assign endpoint profiles to remote workers.

C.  

It uses the identity and access management (IAM) portal to validate the identities of remote workers.

D.  

It offers zero trust network access (ZTNA) capabilities.

A.  

secure web gateway (SWG)

B.  

zero trust network access (ZTNA)

C.  

sandbox cloud

D.  

inline-CASB

A.  

ZTNA

B.  

SD-WAN

C.  

SWG

D.  

CASB

A.  

security posture tags

B.  

application inventory

C.  

user verification

D.  

device identification

A.  

For user access control to FortiSASE

B.  

For allocation and assignment of unique IP addresses to remote users

C.  

For regulatory compliance

D.  

For isolation and identification

A.  

It provides end-to-end network visibility from all the FortiSASE security PoPs to a specific SaaS application.

B.  

It gathers all the vulnerability information from all the FortiClient endpoints.

C.  

It is used for performing device compliance checks on endpoints.

D.  

It monitors the FortiSASE POP health based on ping probes.

A.  

the vendor of the software

B.  

the endpoint the software is installed on

C.  

the license status of the software

D.  

the usage frequency of the software