HTTP Public Key Pinning (HPKP) can be an obstacle to implementing full SSL inspection. What solutions could resolve this problem? (Choose two.)
A. Enable Allow Invalid SSL Certificates for the relevant security profile.
B. Change web browsers to one that does not support HPKP.
C. Exempt those web sites that use HPKP from full SSL inspection.
D. Install the CA certificate (that is required to verify the web server certificate) stores of users’ computers.
B and C are correct, see FortiGate_Security_6.2_Study_Guide-Online.pdf page 346
C y D are correct, see FortiGate_Security_6.2_Study_Guide-Online.pdf page 346. See the picture.