Which FortiGate feature allows for application control?

The correct choice is the Application Control Profile, which is specifically designed to identify and manage application traffic traversing the FortiGate device. Application control leverages deep packet inspection to analyze traffic and allows administrators to define controls, such as permitting, blocking, or shaping traffic based on applications rather than just ports or IP addresses.

When using an Application Control Profile, administrators can create more granular policies that enhance the security posture of the network by preventing the use of unwanted applications and managing bandwidth usage effectively. This specialization is critical in today's network environments where applications often use standard ports to communicate, making it difficult to restrict them using traditional firewall rules alone.

In contrast, the other options serve different functions within FortiGate's feature set. Traffic Shaping Policy, for instance, is focused on managing bandwidth allocation and ensuring a certain level of service for specific traffic types. Session Control pertains to managing and tracking sessions for stateful inspection but does not provide the specific capabilities for application recognition and control as the Application Control Profile does. Meanwhile, Firewall Policy is essential for establishing rules on traffic flow but generally operates at a higher level without the deep granularity of application-level controls that the Application Control Profile offers.