NSE 8 – Network Security Expert (811) — Question 25

A customer is looking for a way to remove javascripts, macros and hyperlinks from documents traversing the network without affecting the integrity of the content.
You propose to use the Content disarm and reconstruction (CDR) feature of the FortiGate.
Which two considerations are valid to implement CDR in this scenario? (Choose two.)

Answer options

• A. The inspection mode of the FortiGate is not relevant for CDR to operate.
• B. CDR is supported on HTTPS, SMTPS, and IMAPS if deep inspection is enabled.
• C. CDR can only be performed on Microsoft Office Document and PDF files.
• D. Files processed by CDR can have the original copy quarantined on the FortiGate.

Correct answer: C, D

Explanation

The correct answers are C and D because CDR is specifically designed to work with Microsoft Office Document and PDF files, and it can quarantine the original files on the FortiGate for safety. Options A and B are incorrect as they do not pertain to the specific requirements and limitations of CDR functionality.