FCP – FortiWeb Administrator 7.4 — Question 28

Which two statements about HTTPS on FortiWeb are true? (Choose two.)

Answer options

• A. Transparent inspection works with TLS 1.3.
• B. After you enable HTTP Strict Transport Security (HSTS), you never need to configure static redirects to HTTPS.
• C. In SSL/TLS mode, the encrypted connection from the client is terminated on the protected web server.
• D. In transparent inspection mode, you have to specify a certificate on FortiWeb for decryption.

Correct answer: A, D

Explanation

Option A is correct because FortiWeb supports transparent inspection with TLS 1.3. Option D is also correct as transparent inspection requires a certificate for decryption on FortiWeb. Options B and C are incorrect; HSTS does not eliminate the need for static redirects, and in SSL/TLS mode, the encrypted connection is terminated at FortiWeb, not on the protected web server.