ExamGecko
Login
Home / Fortinet / NSE7_LED-7.0 / List of questions
Ask Question

Fortinet NSE7_LED-7.0 Practice Test - Questions Answers, Page 4

Add to Whishlist

List of questions

Question 31

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_LED-7.0 image Question 31 27033 09182024190743000000

Examine the FortiGate user group configuration and the Windows AD LDAP group membership information shown in the exhibit

FortiGate is configured to authenticate SSL VPN users against Windows AD using LDAP The administrator configured the SSL VPN user group for SSL VPN users However the administrator noticed that both the student and j smith users can connect to SSL VPN

Which change can the administrator make on FortiGate to restrict the SSL VPN service to the student user only?

Become a Premium Member for full access
  Unlock Premium Member

Question 32

Report Export Collapse

Refer to the exhibits.

Fortinet NSE7_LED-7.0 image Question 32 27034 09182024190743000000

Exhibit.

Fortinet NSE7_LED-7.0 image Question 32 27034 09182024190743000000

Examine the troubleshooting outputs shown in the exhibits

Users have been reporting issues with the speed of their wireless connection in a particular part of the wireless network The interface that is having issues is the 2 4 GHz interface that is currently configured on channel 6

The administrator of the wireless network has investigated and surveyed the local RF environment using the tools available at the AP and FortiGate

Which configuration would improve the wireless connection?

Become a Premium Member for full access
  Unlock Premium Member

Question 33

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_LED-7.0 image Question 33 27035 09182024190743000000

Examine the FortiSwitch security policy shown in the exhibit

If the security profile shown in the exhibit is assigned to all ports on a FortiSwitch device for 802 1X authentication which statement about the switch is correct?

Become a Premium Member for full access
  Unlock Premium Member

Question 34

Report Export Collapse

Which two statements about the MAC-based 802 1X security mode available on FortiSwitch are true? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 35

Report Export Collapse

Where can FortiGate learn the FortiManager IP address or FQDN for zero-touch provisioning'?

Become a Premium Member for full access
  Unlock Premium Member

Question 36

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_LED-7.0 image Question 36 27038 09182024190743000000

Examine the LDAP server configuration shown in the exhibit Note that the Username setting has been expanded to display Its full content

On the Windows AD server 10.0.1.10, the administrator used dsquery. which returned the following output:

Fortinet NSE7_LED-7.0 image Question 36 27038 09182024190743000000

According to the output which FortiGate LDAP setting is configured incorrectly''

Become a Premium Member for full access
  Unlock Premium Member

Question 37

Report Export Collapse

Which EAP method requires the use of a digital certificate on both the server end and the client end?

Become a Premium Member for full access
  Unlock Premium Member

Question 38

Report Export Collapse

Refer to the exhibits showing AP monitoring information.

Fortinet NSE7_LED-7.0 image Question 1 63880536988930924046813

The exhibits show the status of an AP in a small office building. The building is located at the edge of a campus, and users are reporting issues with wireless network performance.

Fortinet NSE7_LED-7.0 image Question 1 63880536988930924046813

Which configuration change would best improve the wireless network performance?

Become a Premium Member for full access
  Unlock Premium Member

Question 39

Report Export Collapse

An administrator has deployed multiple dual-band wireless APs in a wireless network. APs are installed at measured distances to ensure fast roaming for the clients. Multiple 2.4 GHz-only wireless clients are connecting to the network, and subsequent monitoring shows that individual AP 2.4 GHz interfaces are being overloaded with wireless connections.

Which configuration change would best resolve the overloading issue?

Become a Premium Member for full access
  Unlock Premium Member

Question 40

Report Export Collapse

Which three protocols are used for controlling FortiSwitch devices on FortiGate? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member
Total 61 questions
Go to page: of 7
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

A wireless network in a school provides guest access using a captive portal to allow unregistered users to self-register and access the network The administrator is requested to update the existing configuration to provide captive portal authentication through a secure connection (HTTPS) Which two changes must the administrator make to enforce HTTPS authentication'? (Choose two >
Refer to the exhibit. Examine the debug output shown in the exhibit Which two statements about the RADIUS debug output are true'' (Choose two)
Refer to the exhibit Examine the FortiGate RSSO configuration shown in the exhibit FortiGate is configured to receive RADIUS accounting messages on port3 to authenticate RSSO users The users are located behind port3 and the internet link is connected to port1 FortiGate is processing incoming RADIUS accounting messages successfully and RSSO users are getting associated with the RSSO Group user group However all the users are able to access the internet, and the administrator wants to restrict internet access to RSSO users only Which configuration change should the administrator make to fix the problem?
Which two statements about the guest portal on FortiAuthenticator are true? (Choose two.)
Which two pieces of information can the diagnose test authserver ldap command provide? (Choose two.)
What is the purpose of enabling Windows Active Directory Domain Authentication on FortiAuthenticator?
Refer to the exhibit. Examine the IPsec VPN phase 1 configuration shown in the exhibit An administrator wants to use certificate-based authentication for an IPsec VPN user Which three configuration changes must you make on FortiGate to perform certificate-based authentication for the IPsec VPN user? (Choose three)
Which two statements about the MAC-based 802 1X security mode available on FortiSwitch are true? (Choose two.)
Refer to the exhibits. Exhibit. Examine the troubleshooting outputs shown in the exhibits Users have been reporting issues with the speed of their wireless connection in a particular part of the wireless network The interface that is having issues is the 2 4 GHz interface that is currently configured on channel 6 The administrator of the wireless network has investigated and surveyed the local RF environment using the tools available at the AP and FortiGate Which configuration would improve the wireless connection?
Refer to the exhibit. Examine the FortiGate configuration FortiAnalyzer logs and FortiGate widget shown in the exhibit An administrator is testing the Security Fabric quarantine automation The administrator added FortiAnalyzer to the Security Fabric and configured an automation stitch to automatically quarantine compromised devices The test device (::.:.:.!) s connected to a managed Fort Switch dev :e After trying to access a malicious website from the test device, the administrator verifies that FortiAnalyzer has a log (or the test connection However the device is not getting quarantined by FortiGate as shown in the quarantine widget Which two scenarios are likely to cause this issue? (Choose two)