New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Fortinet NSE6_FAC-6.1 Fortinet NSE 6 - FortiAuthenticator 6.1 Exam Practice Test

Page: 1 / 3
Total 30 questions

Fortinet NSE 6 - FortiAuthenticator 6.1 Questions and Answers

Question 1

At a minimum, which two configurations are required to enable guest portal services on FortiAuthenticator? (Choose two)

Options:

A.

Configuring a portal policy

B.

Configuring at least on post-login service

C.

Configuring a RADIUS client

D.

Configuring an external authentication portal

Question 2

Which two statements about the EAP-TTLS authentication method are true? (Choose two)

Options:

A.

Uses mutualauthentication

B.

Uses digital certificates only on the server side

C.

Requires an EAP server certificate

D.

Support a port access control (wired) solution only

Question 3

Which two capabilities does FortiAuthenticator offer when acting as a self-signed or local CA? (Choose two)

Options:

A.

Validating other CA CRLs using OSCP

B.

Importing other CA certificates and CRLs

C.

Merging local and remote CRLs using SCEP

D.

Creating, signing, and revoking of X.509 certificates

Question 4

You want to monitor FortiAuthenticator system information and receive FortiAuthenticator traps through SNMP.

Which two configurations must be performed after enabling SNMP access on the FortiAuthenticator interface? (Choose two)

Options:

A.

Enable logging services

B.

Set the tresholds to trigger SNMP traps

C.

Upload management information base (MIB) files to SNMP server

D.

Associate an ASN, 1 mapping rule to the receiving host

Question 5

You are the administrator of a large network that includes a large local user datadabase on the current Fortiauthenticatior. You want to import all the local users into a new Fortiauthenticator device.

Which method should you use to migrate the local users?

Options:

A.

Import users using RADIUS accounting updates.

B.

Import the current directory structure.

C.

Import users fromRADUIS.

D.

Import users using a CSV file.

Question 6

Which method is the most secure way of delivering FortiToken data once the token has been seeded?

Options:

A.

Online activation of the tokens through the FortiGuard network

B.

Shipment of the seed files on a CD using a tamper-evident envelope

C.

Using the in-house token provisioning tool

D.

Automatic token generation using FortiAuthenticator

Question 7

What are three key features of FortiAuthenticator? (Choose three)

Options:

A.

Identity management device

B.

Log server

C.

Certificate authority

D.

Portal services

E.

RSSO Server

Question 8

Which statement about the guest portal policies is true?

Options:

A.

Guest portal policies apply only to authentication requests coming from unknown RADIUS clients

B.

Guest portal policies can be used only for BYODs

C.

Conditions in the policy apply only to guest wireless users

D.

All conditions in the policy must match before a user is presented with the guest portal

Question 9

Which of the following is an QATH-based standart to generate event-based, one-time password tokens?

Options:

A.

OLTP

B.

SOTP

C.

HOTP

D.

TOTP

Page: 1 / 3
Total 30 questions