ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FNC-7.2

Fortinet NSE6_FNC-7.2 Practice Test - Questions Answers, Page 5

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What causes a host's state to change to 'at risk'?
What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?
Where do you look to determine when and why the FortiNAC made an automated network access change?
Which two of the following are required for endpoint compliance monitors? (Choose two.)
With enforcement for network access policies and at-risk hosts enabled, what will happen if a host matches a network access policy and has a state of 'at risk'?
When you create a user or host profile; which three criteria can you use? (Choose three.)
Which command line shell and scripting language does FortiNAC use for WinRM?
Which three of the following are components of a security rule? (Choose three.)
View the command and output. What is the state of database replication?
Refer to the exhibit. If you are forcing the registration of unknown (rogue) hosts, and an unknown (rogue) host connects to a port on the switch, what occurs?

Question 41

Report
Export
Collapse

By default, if more than 20 hosts are seen connected on a single port simultaneously, what will happen to the port?

A.
The port is switched into the Dead-End VLAN.
A.
The port is switched into the Dead-End VLAN.
Answers
B.
The port becomes a threshold uplink.
B.
The port becomes a threshold uplink.
Answers
C.
The port is disabled.
C.
The port is disabled.
Answers
D.
The port is added to the Forced Registration group.
D.
The port is added to the Forced Registration group.
Answers
Suggested answer: B

Explanation:

Admin Guide p. 754: Threshold Uplink---The Uplink mode has been set as Dynamic and FortiNAC has determined that the number of MAC addresses on the port exceeds the System Defined Uplink count. All hosts read on this port are ignored.

Question 42

Report
Export
Collapse

What causes a host's state to change to 'at risk'?

A.
The host has failed an endpoint compliance policy or admin scan.
A.
The host has failed an endpoint compliance policy or admin scan.
Answers
B.
The logged on user is not found in the Active Directory.
B.
The logged on user is not found in the Active Directory.
Answers
C.
The host has been administratively disabled.
C.
The host has been administratively disabled.
Answers
D.
The host is not in the Registered Hosts group.
D.
The host is not in the Registered Hosts group.
Answers
Suggested answer: A

Explanation:

Failure -- Indicates that the host has failed the scan. This option can also be set manually. When the status is set to Failure the host is marked 'At Risk' for the selected scan.

p. 244 of the Study Guide, 'A state of at-risk indicates the host has failed a scan. This could be a compliance scan or an administrative scan.'


Question 43

Report
Export
Collapse

Refer to the exhibit.

If you are forcing the registration of unknown (rogue) hosts, and an unknown (rogue) host connects to a port on the switch, what occurs?

A.
The host is moved to VLAN 111.
A.
The host is moved to VLAN 111.
Answers
B.
The host is moved to a default isolation VLAN.
B.
The host is moved to a default isolation VLAN.
Answers
C.
No VLAN change is performed.
C.
No VLAN change is performed.
Answers
D.
The host is disabled.
D.
The host is disabled.
Answers
Suggested answer: B

Question 44

Report
Export
Collapse

View the command and output shown in the exhibit.

What is the current state of this host?

A.
Rogue
A.
Rogue
Answers
B.
Registered
B.
Registered
Answers
C.
Not authenticated
C.
Not authenticated
Answers
D.
At-Risk
D.
At-Risk
Answers
Suggested answer: C

Question 45

Report
Export
Collapse

Where do you look to determine when and why the FortiNAC made an automated network access change?

A.
The Event view
A.
The Event view
Answers
B.
The Port Changes view
B.
The Port Changes view
Answers
C.
The Connections view
C.
The Connections view
Answers
D.
The Admin Auditing view
D.
The Admin Auditing view
Answers
Suggested answer: B

Explanation:

Study Guide p. 356: Any time FortiNAC changes network access for an endpoint, the change is documented on the Port Changes view. This provides an administrator with valuable information when validating control configurations and enforcement.

Question 46

Report
Export
Collapse

Refer to the exhibit, and then answer the question below.

Which host is rogue?

A.
1
A.
1
Answers
B.
3
B.
3
Answers
C.
2
C.
2
Answers
D.
4
D.
4
Answers
Suggested answer: B

Question 47

Report
Export
Collapse

What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?

A.
The port would be provisioned for the normal state host, and both hosts would have access to that VLAN.
A.
The port would be provisioned for the normal state host, and both hosts would have access to that VLAN.
Answers
B.
The port would not be managed, and an event would be generated.
B.
The port would not be managed, and an event would be generated.
Answers
C.
The port would be provisioned to the registration network, and both hosts would be isolated.
C.
The port would be provisioned to the registration network, and both hosts would be isolated.
Answers
D.
The port would be administratively shut down.
D.
The port would be administratively shut down.
Answers
Suggested answer: C
Total 47 questions
Go to page: of 5
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms