Netskope NSK200 Exam - Topic 4 Question 52 Discussion

Actual exam question for Netskope's NSK200 exam

Question #: 52
Topic #: 4

You have deployed a development Web server on a public hosting service using self-signed SSL certificates. After some troubleshooting, you determined that when the Netskope client is enabled, you are unable to access the Web server over SSL. The default Netskope tenant steering configuration is in place.

In this scenario, which two settings are causing this behavior? (Choose two.)

ASSL pinned certificates are blocked.

BUntrusted root certificates are blocked.

CIncomplete certificate trust chains are blocked.

DSelf-signed server certificates are blocked.

Show Suggested Answer

Suggested Answer: B, D

The default Netskope tenant steering configuration blocks untrusted root certificates and self-signed server certificates. These settings are intended to prevent man-in-the-middle attacks and ensure the validity of the SSL connection. However, they also prevent the access to the development Web server that uses self-signed SSL certificates. To allow access to the Web server, the settings need to be changed or an exception needs to be added for the Web server domain.

by Giuseppe at Mar 31, 2026, 08:26 AM

Limited Time Offer

25%

2 months ago

I remember something about SSL pinned certificates being a common issue, but I'm not sure if that's the right answer here.

upvoted 0 times

...