Q: 18
Zscaler forwards the server SSL/TLS certificate directly to the user's browser session in which
situation?
Options
Discussion
B
Its C here, seen this exact scenario called out in both official Zscaler docs and a couple practice exams. If SSL inspection is bypassed by policy, Zscaler just lets the real server certificate pass through. Pretty sure that's what they're testing for, but open to corrections.
Don’t think it’s D, definitely C here. The exemption in SSL Inspection policy is what makes Zscaler forward the real cert.
Yeah I'd go C here. Zscaler only forwards the server's cert if SSL inspection policy says to exempt that traffic.
I think this is same as a common exam questions. on some practice material, and it was C.
C tbh, that's the scenario where Zscaler doesn't intercept SSL so it just lets the server's real cert flow to the browser. Custom ports or previous sessions don't matter here, it's all about the inspection exemption. Pretty confident but tell me if you disagree.
C here, that's what the official Zscaler docs mention. If SSL inspection is bypassed by policy, Zscaler just passes the server cert right through. Saw this in practice questions too, but if anyone saw otherwise let me know.
Probably C
C makes sense here. When traffic is specifically exempted in SSL Inspection policy, Zscaler just passes the server's original cert to the browser instead of doing its usual re-encryption thing. D wouldn't really trigger this behavior, it's entirely about the policy config. Pretty sure on this but open if anyone sees it differently.
C or D? I see similar wording in practice dumps and always appreciate when the question is this clear. Nice one.
Be respectful. No spam.
