Fortinet Exam FCP_FGT_AD-7.6 Topic 2 Question 2 Discussion

Actual exam question for Fortinet's FCP_FGT_AD-7.6 exam

Question #: 2
Topic #: 2

A network administrator enabled antivirus and selected an SSL inspection profile on a firewall policy.

When downloading an EICAR test file through HTTP, FortiGate detects the virus and blocks the file. When downloading the same file through HTTPS, FortiGate does not detect the virus and does not block the file, allowing it to be downloaded.

The administrator confirms that the traffic matches the configured firewall policy.

What are two reasons for the failed virus detection by FortiGate? (Choose two.)

AThe selected SSL inspection profile has certificate inspection enabled.

BThe website is exempted from SSL inspection.

CThe El CAR test file exceeds the protocol options oversize limit.

DThe browser does not trust the FortiGate self-signed CA certificate.

Show Suggested Answer

Suggested Answer: B, D

by Gail at Jul 07, 2025, 03:46 PM

Limited Time Offer

25%

Off

Get Premium FCP_FGT_AD-7.6 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Gerald

1 days ago

I agree with Paulina. Another reason could be D, the browser does not trust the FortiGate self-signed CA certificate.

upvoted 0 times

...

Paulina

2 days ago

I think the reason could be A, the SSL inspection profile has certificate inspection enabled.

upvoted 0 times

...