Fortinet NSE6_FNC-7.2 Exam Practice Test Instant Access

Question 1

Where do you look to determine when and why the FortiNAC made an automated network access change?

AThe Event view

BThe Port Changes view

CThe Connections view

DThe Admin Auditing view

Answer : B

Study Guide p. 356: Any time FortiNAC changes network access for an endpoint, the change is documented on the Port Changes view. This provides an administrator with valuable information when validating control configurations and enforcement.

Question 2

Which three of the following are components of a security rule? (Choose three.)

ASecurity String

BMethods

CAction

DUser or host profile

ETrigger

Answer : C, D, E

Question 3

Where are logical network values defined?

AIn the model configuration view of each infrastructure device

BIn the port properties view of each port

COn the profiled devices view

DIn the security and access field of each host record

Answer : A

Question 4

What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?

AThe port would be provisioned for the normal state host, and both hosts would have access to that VLAN.

BThe port would not be managed, and an event would be generated.

CThe port would be provisioned to the registration network, and both hosts would be isolated.

DThe port would be administratively shut down.

Answer : C

Question 5

What agent is required in order to detect an added USB drive?

APersistent

BDissolvable

CMobile

DPassive

Answer : A

Expand the Persistent Agent folder. Select USB Detection from the tree.

1. Click System > Settings.

2. Expand the Persistent Agent folder.

3. Select USB Detection from the tree.

4. Click Add or select an existing USB drive and click Modify.

Question 6

Which two policy types can be created on a FortiNAC Control Manager? (Choose two.)

AAuthentication

BNetwork Access

CEndpoint Compliance

DSupplicant EasvConnect

Answer : B, C

Question 7

An administrator is configuring FortiNAC to manage FortiGate VPN users. As part of the configuration, the administrator must configure a few FortiGate firewall policies.

What is the purpose of the FortiGate firewall policy that applies to unauthorized VPN clients?

ATo deny access to only the production DNS server

BTo allow access to only the FortiNAC VPN interface

CTo allow access to only the production DNS server

DTo deny access to only the FortiNAC VPN interface

Answer : B

Fortinet NSE6_FNC-7.2 Fortinet NSE 6 - FortiNAC 7.2 Exam Practice Test