Get Prepared for Your NSE6_FNC-7.2 Exam With Actual 48 Questions
Valid NSE6_FNC-7.2 Test Answers Full-length Practice Certification Exams
NEW QUESTION # 10
When FortiNAC passes a firewall tag to FortiGate, what determines the value that is passed?
- A. RADIUS group attribute
- B. Security rule
- C. Logical network
- D. Device profiling rule
Answer: C
NEW QUESTION # 11
What agent is required in order to detect an added USB drive?
- A. Dissolvable
- B. Mobile
- C. Persistent
- D. Passive
Answer: C
Explanation:
Expand the Persistent Agent folder. Select USB Detection from the tree.
Reference:
1. Click System > Settings.
2. Expand the Persistent Agent folder.
3. Select USB Detection from the tree.
4. Click Add or select an existing USB drive and click Modify.
NEW QUESTION # 12
Which three circumstances trigger Layer 2 polling of infrastructure devices? (Choose three.)
- A. Manual polling
- B. A failed Layer 3 poll
- C. Scheduled poll timings
- D. A matched security policy
- E. Linkup and Linkdown traps
Answer: B,C
NEW QUESTION # 13
View the command and output shown in the exhibit.
What is the current state of this host?
- A. Not authenticated
- B. Registered
- C. Rogue
- D. At-Risk
Answer: A
NEW QUESTION # 14
In a wireless integration, what method does FortiNAC use to obtain connecting MAC address information?
- A. RADIUS
- B. SNMP traps
- C. Endstation traffic monitoring
Answer: A
Explanation:
D Link traps
NEW QUESTION # 15
By default, if more than 20 hosts are seen connected on a single port simultaneously, what will happen to the port?
- A. The port becomes a threshold uplink.
- B. The port is disabled.
- C. The port is switched into the Dead-End VLAN.
- D. The port is added to the Forced Registration group.
Answer: C
NEW QUESTION # 16
What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?
- A. The port would be provisioned to the registration network, and both hosts would be isolated.
- B. The port would be provisioned for the normal state host, and both hosts would have access to that VLAN.
- C. The port would be administratively shut down.
- D. The port would not be managed, and an event would be generated.
Answer: B
NEW QUESTION # 17
Which connecting endpoints are evaluated against all enabled device profiling rules?
- A. Known trusted devices each time they change location
- B. All hosts, each time they connect
- C. Rogues devices, only when they connect for the first time
- D. Rogues devices, each time they connect
Answer: D
Explanation:
FortiNAC process to classify rogue devices and create an organized inventory of known trusted registered devices.
NEW QUESTION # 18
Which two things must be done to allow FortiNAC to process incoming syslog messages from an unknown vendor? (Choose two.)
- A. The device must be added as a patch management server.
- B. The device must be added as a log receiver.
- C. A security event parser must be created for the device.
- D. The device sending the messages must be modeled in the Network Inventory view.
Answer: B,C
NEW QUESTION # 19
An administrator wants the Host At Risk event to generate an alarm. What is used to achieve this result?
- A. A security filter
- B. An event to action mapping
- C. An event to alarm mapping
- D. A security trigger activity
Answer: C
NEW QUESTION # 20
Which two methods can be used to gather a list of installed applications and application details from a host? (Choose two)
- A. Application layer traffic inspection
- B. Agent technology
- C. Portal page on-boarding options
- D. MDM integration
Answer: A,C
NEW QUESTION # 21
When you create a user or host profile; which three criteria can you use? (Choose three.)
- A. Host or user group memberships
- B. Host or user attributes
- C. Administrative group membership
- D. An applied access policy
- E. Location
Answer: A,B,E
Explanation:
Fortinac-admin-operations, P. 391
NEW QUESTION # 22
Which agent can receive and display messages from FortiNAC to the end user?
- A. Dissolvable
- B. Persistent
- C. Passive
- D. MDM
Answer: B
NEW QUESTION # 23
Where are logical network values defined?
- A. On the profiled devices view
- B. In the port properties view of each port
- C. In the security and access field of each host record
- D. In the model configuration view of each infrastructure device
Answer: A
NEW QUESTION # 24
Refer to the exhibit.
If you are forcing the registration of unknown (rogue) hosts, and an unknown (rogue) host connects to a port on the switch, what occurs?
- A. No VLAN change is performed.
- B. The host is disabled.
- C. The host is moved to a default isolation VLAN.
- D. The host is moved to VLAN 111.
Answer: C
NEW QUESTION # 25
Which connecting endpoints are evaluated against all enabled device profiling rules?
- A. Known trusted devices each time they change location
- B. All hosts, each time they connect
- C. Rogues devices, only when they connect for the first time
- D. Rogues devices, each time they connect
Answer: D
NEW QUESTION # 26
Where do you look to determine what network access policy, if any, is being applied to a particular host?
- A. The Port Properties view of the hosts port
- B. The Policy Details view for the host
- C. The network access policy configuration
- D. The Policy Logs view
Answer: D
NEW QUESTION # 27
In an isolation VLAN. which three services does FortiNAC supply? (Choose three.)
- A. Web
- B. SMTP
- C. DNTP
- D. IDHCP
- E. DDNS
Answer: A,C,E
NEW QUESTION # 28
Which command line shell and scripting language does FortiNAC use for WinRM?
- A. Powershell
- B. Linux
- C. DOS
- D. Bash
Answer: A
NEW QUESTION # 29
How are logical networks assigned to endpoints?
- A. Through network access policies
- B. Through Layer 3 polling configurations
- C. Through FortiGate IPv4 policies
- D. Through device profiling rules
Answer: A
NEW QUESTION # 30
What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?
- A. The port would be administratively shut down.
- B. The port would be provisioned for the normal state host, and both hosts would have access to that VLAN.
- C. The port would be provisioned to the registration network, and both hosts would be isolated.
- D. The port would not be managed, and an event would be generated.
Answer: C
NEW QUESTION # 31
Which three are components of a security rule? (Choose three.)
- A. Trigger
- B. Security String
- C. User or host profile
- D. Methods
- E. Action
Answer: A,C,E
NEW QUESTION # 32
......
Fortinet NSE6_FNC-7.2 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
Accurate & Verified 2024 New NSE6_FNC-7.2 Answers As Experienced in the Actual Test!: https://examboost.latestcram.com/NSE6_FNC-7.2-exam-cram-questions.html
