New Year Special Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

Home > Fortinet > NSE 6 Network Security Specialist > NSE6_FAC-6.1

NSE6_FAC-6.1 Fortinet NSE 6 - FortiAuthenticator 6.1 Question and Answers

Question # 4

Which method is the most secure way of delivering FortiToken data once the token has been seeded?

A.

Online activation of the tokens through the FortiGuard network

B.

Shipment of the seed files on a CD using a tamper-evident envelope

C.

Using the in-house token provisioning tool

D.

Automatic token generation using FortiAuthenticator

Full Access
Question # 5

Which statement about the guest portal policies is true?

A.

Guest portal policies apply only to authentication requests coming from unknown RADIUS clients

B.

Guest portal policies can be used only for BYODs

C.

Conditions in the policy apply only to guest wireless users

D.

All conditions in the policy must match before a user is presented with the guest portal

Full Access
Question # 6

Which two statement about the RADIUS service on FortiAuthenticator are true? (Choose two)

A.

Two-factor authentication cannot be enforced when using RADIUS authentication

B.

RADIUS users can migrated to LDAP users

C.

Only local users can be authenticated through RADIUS

D.

FortiAuthenticator answers only to RADIUS client that are registered with FortiAuthenticator

Full Access
Question # 7

Which two statements about the self-service portal are true? (Choose two)

A.

Self-registration information can be sent to the user through email or SMS

B.

Realms can be used to configure which seld-registeredusers or groups can authenticate on the network

C.

Administrator approval is required for all self-registration

D.

Authenticating users must specify domain name along with username

Full Access
Question # 8

Which EAP method is known as the outer authentication method?

A.

PEAP

B.

EAP-GTC

C.

EAP-TLS

D.

MSCHAPV2

Full Access
Question # 9

Which behaviors exist for certificate revocation lists (CRLs) on FortiAuthenticator? (Choose two)

A.

CRLs contain the serial number of the certificate that has been revoked

B.

Revoked certificates are automaticlly placed on the CRL

C.

CRLs can beexported only through the SCEP server

D.

All local CAs share the same CRLs

Full Access