JNCIS-ENT: Juniper Networks Certified Specialist – Enterprise Routing and Switching (2022) — Question 25

Which two statements are correct about client-protection Secure Socket Layer (SSL) proxy configurations? (Choose two.)

Answer options

• A. Server certificate is required.
• B. Root certificate authority (CA) configuration is required.
• C. Root certificate authority (CA) configuration is not required.
• D. Server certificate is not required.

Correct answer: A, B

Explanation

The correct answers are A and B because a server certificate is essential for establishing trust in SSL proxy configurations, and the root certificate authority (CA) configuration is also required to validate the server's certificate. Options C and D are incorrect as they suggest that the CA configuration and server certificate are not needed, which undermines the security provided by SSL.