NSE 4 – FortiGate 7.2 — Question 18

Which two settings are required for SSL VPN to function between two FortiGate devices? (Choose two.)

Answer options

• A. The client FortiGate requires a manually added route to remote subnets.
• B. The client FortiGate requires a client certificate signed by the CA on the server FortiGate.
• C. The server FortiGate requires a CA certificate to verify the client FortiGate certificate.
• D. The client FortiGate requires the SSL VPN tunnel interface type to connect SSL VPN.

Correct answer: C, D

Explanation

Answer C is correct because the server FortiGate must have a CA certificate to authenticate the client's certificate, ensuring secure communication. Answer D is also correct as the client FortiGate requires the SSL VPN tunnel interface type to successfully establish a connection. Answers A and B are not necessary for the VPN to function between the devices.