Fortinet NSE6_FNC-7.2 Exam Practice Test Instant Access

Question 1

Which agent can receive and display messages from FortiNAC to the end user?

ADissolvable

BPersistent

CPassive

DMDM

Answer : B

The persistent agent has the ability to display messages on the desktop of an endpoint. These messages can target an individual host, a group of hosts, or all hosts with the persistent agent installed. The messaging options include sending a message content with an optional web address link

Question 2

Which three communication methods are used by FortiNAC to gather information from and control, infrastructure devices? (Choose three.)

ACLI

BSMTP

CSNMP

DFTP

ERADIUS

Answer : A, C, E

FortiNAC Study Guide 7.2 | Page 11

FortiNAC uses various methods to communicate with infrastructure devices such as SNMP for discovery and ongoing management, SSH or Telnet through the CLI for tasks related to the infrastructure, and RADIUS for handling specific types of requests

Question 3

Where should you configure MAC notification traps on a supported switch?

AConfigure them only after you configure linkup and linkdown traps.

BConfigure them on all ports on the switch.

CConfigure them only on ports set as 802 1g trunks.

DConfigure them on all ports except uplink ports.

Answer : C

In general, for network switches supporting MAC notification traps, it's advisable to configure these traps on all ports except uplink ports. Uplink ports are used for connecting to other switches or network infrastructure devices and typically don't need MAC notification traps, which are more relevant for end-device connectivity monitoring.

The study guide specifies that MAC notification traps should not be configured on interfaces that are uplinks. They are the preferred method for learning and updating Layer 2 information and should be used whenever available, but not on uplink interfaces.

Question 4

In an isolation VLAN which three services does FortiNAC supply? (Choose three.)

ANTP

BDHCP

CWeb

DDNS

EISMTP

Answer : B, C, D

In an isolation VLAN, FortiNAC supplies DHCP and DNS services. The guide specifies that FortiNAC has a DHCP scope defined for a particular VLAN and should be the only DHCP server available to hosts on that VLAN. Additionally, hosts on the VLAN would get a DNS server configuration of the FortiNAC IP for that VLAN

Question 5

How are logical networks assigned to endpoints?

AThrough device profiling rules

BThrough network access policies

CThrough Layer 3 polling configurations

DThrough FortiGate IPv4 policies

Answer : A

Logical networks are assigned to endpoints through device profiling rules in FortiNAC. These networks appear in device Model Configuration views and are used for endpoint isolation based on the endpoint's state or status

Question 6

When FortiNAC passes a firewall tag to FortiGate, what determines the value that is passed?

ASecurity rule

BDevice profiling rule

CRADIUS group attribute

DLogical network

Answer : B

Question 7

Which two device classification options can register a device automatically and transparently to the end user? (Choose two.)

ADissolvable agent

BDotlxAuto Registration

CDevice importing

DMDM integration

ECaptive portal

Answer : B, D

The FortiNAC 7.2 Study Guide does not explicitly mention Dot1x Auto Registration and MDM integration as the specific device classification options for automatic and transparent registration to the end user. However, based on the general functioning of FortiNAC, Dot1x Auto Registration and MDM integration are typically used for such purposes. The guide discusses automatic device registration in the context of profiling rules

Fortinet NSE6_FNC-7.2 Fortinet NSE 6 - FortiNAC 7.2 Exam Practice Test