ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FAC-6.4
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which two protocols are the default management access protocols for administrative access for FortiAuthenticator? (Choose two)
Which statement about the guest portal policies is true?
What are three key features of FortiAuthenticator? (Choose three)
Which statement about the assignment of permissions for sponsor and administrator accounts is true?
You have implemented two-factor authentication to enhance security to sensitive enterprise systems. How could you bypass the need for two-factor authentication for users accessing form specific secured networks?
Which three of the following can be used as SSO sources? (Choose three)
A device or user identity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis. In this case, which user idendity discovery method can Fortiauthenticator use?
What capability does the inbound proxy setting provide?
Which of the following is an OATH-based standard to generate event-based, one-time password tokens?
Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

Question 7 - NSE6_FAC-6.4 discussion

Report
Export

You are a FortiAuthenticator administrator for a large organization. Users who are configured to use

FortiToken 200 for two-factor authentication can no longer authenticate. You have verified that only the users with two-factor authentication are experiencing the issue.

What can cause this issue?

A.
FortiToken 200 license has expired
Answers
A.
FortiToken 200 license has expired
B.
One of the FortiAuthenticator devices in the active-active cluster has failed
Answers
B.
One of the FortiAuthenticator devices in the active-active cluster has failed
C.
Time drift between FortiAuthenticator and hardware tokens
Answers
C.
Time drift between FortiAuthenticator and hardware tokens
D.
FortiAuthenticator has lost contact with the FortiToken Cloud servers
Answers
D.
FortiAuthenticator has lost contact with the FortiToken Cloud servers
Suggested answer: C

Explanation:

One possible cause of the issue is time drift between FortiAuthenticator and hardware tokens. Time drift occurs when the internal clocks of FortiAuthenticator and hardware tokens are not synchronized. This can result in mismatched one-time passwords (OTPs) generated by the hardware tokens and expected by FortiAuthenticator. To prevent this issue, FortiAuthenticator provides a time drift tolerance option that allows a certain number of seconds of difference between the clocks.

Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4.0/administrationguide/ 906179/two-factor-authentication#time-drift-tolerance

Show Answer
asked 18/09/2024
Landry Tankam
38 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms