NSE 6 – FortiWeb 6.1 — Question 14

When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

Answer options

• A. If you are a small business or home office
• B. If you are an enterprise whose employees use only mobile devices
• C. If you are an enterprise whose resources do not need security
• D. If you are an enterprise whose computers all trust your active directory or other CA server

Correct answer: D

Explanation

A self-signed certificate is appropriate when an enterprise's computers can be configured to trust it, such as through Active Directory or a local CA server. Options A, B, and C do not provide the necessary trust framework, making them unsuitable for secure communications.