A network security administrator wants to inspect HTTPS traffic from users as it egresses through a firewall to the Internet/Untrust zone from trusted network zones. The security admin wishes to ensure that if users are presented with invalid or untrusted security certificates, the user will see an untrusted certificate warning. What is the best choice for an SSL Forward Untrust certificate? A. A self-signed certificate generated on the firewall B. A web server certificate signed by the organization’s PKI C. A web server certificate signed by an external Certificate Authority D. A subordinate Certificate Authority certificate signed by the organization’s PKI  Suggested Answer: C This question is in PCNSE Palo Alto Networks Certified Network Security Engineer Exam For getting Palo Alto Networks Certified Network Security Engineer (PCNSE) Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by Palo Alto Networks. Trademarks, certification & product names are used for reference only and belong to Palo Alto Networks. The website does not contain actual questions and answers from Palo Alto Networks's Certification Exams.
Please login or Register to submit your answer