CompTIA CASP+ (CAS-004) — Question 24

A company is implementing SSL inspection. During the next six months, multiple web applications that will be separated out with subdomains will be deployed.
Which of the following will allow the inspection of the data without multiple certificate deployments?

Answer options

• A. Include all available cipher suites.
• B. Create a wildcard certificate.
• C. Use a third-party CA.
• D. Implement certificate pinning.

Correct answer: B

Explanation

Creating a wildcard certificate allows the company to cover all subdomains with a single certificate, facilitating SSL inspection without the need for separate certificates for each subdomain. The other options are not effective for this purpose; including all cipher suites does not address certificate management, using a third-party CA still requires individual certificates, and certificate pinning restricts flexibility rather than simplifying it.