View all questions & answers for the NSE 7 - FortiSASE 25 Enterprise Administrator Exam Materials exam


NSE 7 - FortiSASE 25 Enterprise Administrator Exam Materials-Question 39 Discussion

What action must a FortiSASE customer take to restrict organization SaaS access to only FortiSASE-connected users? (Choose one answer)

  • A. Implement a CNAPP solution to allowlist the users under the FortiSASE egress IP
  • B. Implement ZTNA for their private apps and allow list them under SaaS portals or grant them conditional access.
  • C. Connect FortiSASE to an SPA hub for private access to an allowlisted connecting IP.
  • D. Retrieve the PoPs of the users' public IP addresses from the FortiSASE region IP list and whitelist the IP under SaaS portals, or grant them conditional access.
Correct Answer: D

Brave-Dump Clients Votes

D 75%
C 25%

Comments



Brave-Dumps.com Admin 2025-11-26 15:57:10

Selected Answers: D


We need additional check from out experts clients

javaughn Bryan 2025-11-28 21:06:36

Selected Answers: D


D seems to be correct answer.
PAGE: 14 | NSE7 ENTERPRISE GUIDE

mahmoud mostafa 2026-04-13 22:30:25

Selected Answers: C


As I got from the Question,
it means that: the action is just for the hosts known by the fortiSASE (Registered with Forticlient or Agentless but sso authenticated)
if right the answer not D as i think D: Means >> Allow access to Apps from POPS with same GeoIP as the users. and this dose not make a logic for me.
Also the Solution By FortiSASE So, CNAPP is Excluded.
Confused between B,C
Mostly C is correct

Matthias Strauß 2026-04-18 17:59:01

Selected Answers: D


As Bryan said: D
Read the Enterprise Guide from site 10 - 14 and site 14 deliver the answer.