Fortinet NSE6_FAC-6.1 Exam Practice Test Instant Access

Question 1

Which two statement about the RADIUS service on FortiAuthenticator are true? (Choose two)

ATwo-factor authentication cannot be enforced when using RADIUS authentication

BRADIUS users can migrated to LDAP users

COnly local users can be authenticated through RADIUS

DFortiAuthenticator answers only to RADIUS client that are registered with FortiAuthenticator

Answer : B, D

Question 2

At a minimum, which two configurations are required to enable guest portal services on FortiAuthenticator? (Choose two)

AConfiguring a portal policy

BConfiguring at least on post-login service

CConfiguring a RADIUS client

DConfiguring an external authentication portal

Answer : A, B

Question 3

You want to monitor FortiAuthenticator system information and receive FortiAuthenticator traps through SNMP.

Which two configurations must be performed after enabling SNMP access on the FortiAuthenticator interface? (Choose two)

AEnable logging services

BSet the tresholds to trigger SNMP traps

CUpload management information base (MIB) files to SNMP server

DAssociate an ASN, 1 mapping rule to the receiving host

Answer : B, C

Question 4

Which method is the most secure way of delivering FortiToken data once the token has been seeded?

AOnline activation of the tokens through the FortiGuard network

BShipment of the seed files on a CD using a tamper-evident envelope

CUsing the in-house token provisioning tool

DAutomatic token generation using FortiAuthenticator

Answer : B

Question 5

Which two protocols are the default management access protocols for administrative access for FortiAuthenticator? (Choose two)

ATelnet

BHTTPS

CSSH

DSNMP

Answer : B, C

Question 6

What are three key features of FortiAuthenticator? (Choose three)

AIdentity management device

BLog server

CCertificate authority

DPortal services

ERSSO Server

Answer : A, C, D

Question 7

Which network configuration is required when deploying FortiAuthenticator for portal services?

AFortiAuthenticator must have the REST API access enable on port1

BOne of the DNS servers must be a FortiGuard DNS server

CFortigate must be setup as default gateway for FortiAuthenticator

DPolicies must have specific ports open between FortiAuthenticator and the authentication clients

Answer : D

Fortinet NSE6_FAC-6.1 Fortinet NSE 6 - FortiAuthenticator 6.1 Exam Practice Test