Palo Alto Networks Certified Network Security Engineer (PCNSE) — Question 378

A network security administrator wants to configure SSL inbound inspection.

Which three components are necessary for inspecting the HTTPS traffic as it enters the firewall? (Choose three.)

Answer options

• A. An SSL/TLS Service profile
• B. The web server's security certificate with the private key
• C. A Decryption profile
• D. A Decryption policy
• E. The client's security certificate with the private key

Correct answer: B, C, D

Explanation

The correct answer includes B, C, and D because the web server's security certificate with the private key is necessary for SSL decryption, along with a Decryption profile and a Decryption policy to manage the traffic. Options A and E are not needed for inspecting inbound HTTPS traffic at the firewall.