[Aug 14, 2024] Download Free Fortinet NSE6_FNC-7.2 Real Exam Questions
Pass Your Exam With 100% Verified NSE6_FNC-7.2 Exam Questions
Fortinet NSE6_FNC-7.2 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
| Topic 8 |
|
NEW QUESTION # 15
Which two device classification options can register a device automatically and transparently to the end user? (Choose two.)
- A. Captive portal
- B. MDM integration
- C. Dissolvable agent
- D. Device importing
- E. DotlxAuto Registration
Answer: B,E
NEW QUESTION # 16
In an isolation VLAN which three services does FortiNAC supply? (Choose three.)
- A. DHCP
- B. Web
- C. NTP
- D. DNS
- E. ISMTP
Answer: A,B,D
NEW QUESTION # 17
What agent is required in order to detect an added USB drive?
- A. Passive
- B. Persistent
- C. Mobile
- D. Dissolvable
Answer: B
Explanation:
Expand the Persistent Agent folder. Select USB Detection from the tree.
Reference:
1. Click System > Settings.
2. Expand the Persistent Agent folder.
3. Select USB Detection from the tree.
4. Click Add or select an existing USB drive and click Modify.
NEW QUESTION # 18
Which system group will force at-risk hosts into the quarantine network, based on point of connection?
- A. Forced Remediation
- B. Physical Address Filtering
- C. Forced Quarantine
- D. Forced Isolation
Answer: D
NEW QUESTION # 19
Which three communication methods are used by FortiNAC to gather information from and control, infrastructure devices? (Choose three.)
- A. SNMP
- B. SMTP
- C. FTP
- D. RADIUS
- E. CLI
Answer: A,D,E
Explanation:
FortiNAC Study Guide 7.2 | Page 11
NEW QUESTION # 20
In a wireless integration, how does FortiNAC obtain connecting MAC address information?
- A. RADIUS
- B. Link traps
- C. End station traffic monitoring
- D. MAC notification traps
Answer: D
NEW QUESTION # 21
How are logical networks assigned to endpoints?
- A. Through FortiGate IPv4 policies
- B. Through Layer 3 polling configurations
- C. Through network access policies
- D. Through device profiling rules
Answer: A
NEW QUESTION # 22
Which system group will force at-risk hosts into the quarantine network, based on point of connection?
- A. Forced Quarantine
- B. Forced Remediation
- C. Physical Address Filtering
- D. Forced Isolation
Answer: A
Explanation:
Forced Quarantine, study guide 7.2 pag 245 and 248
NEW QUESTION # 23
Which group type can have members added directly from the FortiNAC Control Manager?
- A. Port
- B. Administrator
- C. Device
- D. Host
Answer: B
NEW QUESTION # 24
Where do you look to determine when and why the FortiNAC made an automated network access change?
- A. The Port Changes view
- B. The Event view
- C. The Connections view
- D. The Admin Auditing view
Answer: B
NEW QUESTION # 25
An administrator is configuring FortiNAC to manage FortiGate VPN users. As part of the configuration, the administrator must configure a few FortiGate firewall policies.
What is the purpose of the FortiGate firewall policy that applies to unauthorized VPN clients?
- A. To deny access to only the production DNS server
- B. To allow access to only the FortiNAC VPN interface
- C. To allow access to only the production DNS server
- D. To deny access to only the FortiNAC VPN interface
Answer: B
NEW QUESTION # 26
Which connecting endpoints are evaluated against all enabled device profiling rules?
- A. All hosts, each time they connect
- B. Rogues devices, each time they connect
- C. Known trusted devices each time they change location
- D. Rogues devices, only when they connect for the first time
Answer: B
Explanation:
FortiNAC process to classify rogue devices and create an organized inventory of known trusted registered devices.
NEW QUESTION # 27
Which three circumstances trigger Layer 2 polling of infrastructure devices? (Choose three.)
- A. Linkup and Linkdown traps
- B. A failed Layer 3 poll
- C. Scheduled poll timings
- D. A matched security policy
- E. Manual polling
Answer: B,C
NEW QUESTION # 28
Which two of the following are required for endpoint compliance monitors? (Choose two.)
- A. Custom scan
- B. Persistent agent
- C. Security rule
- D. Logged on user
Answer: A,C
NEW QUESTION # 29
When you create a user or host profile; which three criteria can you use? (Choose three.)
- A. Administrative group membership
- B. Location
- C. Host or user group memberships
- D. An applied access policy
- E. Host or user attributes
Answer: B,C,E
Explanation:
Fortinac-admin-operations, P. 391
NEW QUESTION # 30
What causes a host's state to change to "at risk"?
- A. The host is not in the Registered Hosts group.
- B. The host has failed an endpoint compliance policy or admin scan.
- C. The host has been administratively disabled.
- D. The logged on user is not found in the Active Directory.
Answer: B
Explanation:
Failure - Indicates that the host has failed the scan. This option can also be set manually. When the status is set to Failure the host is marked "At Risk" for the selected scan.
Reference:
p. 244 of the Study Guide, "A state of at-risk indicates the host has failed a scan. This could be a compliance scan or an administrative scan."
NEW QUESTION # 31
Which two methods can be used to gather a list of installed applications and application details from a host? (Choose two)
- A. Portal page on-boarding options
- B. Agent technology
- C. MDM integration
- D. Application layer traffic inspection
Answer: A,D
NEW QUESTION # 32
......
NSE6_FNC-7.2 Dumps 100 Pass Guarantee With Latest Demo: https://www.examdiscuss.com/Fortinet/exam/NSE6_FNC-7.2/
NSE6_FNC-7.2 Dumps PDF - NSE6_FNC-7.2 Real Exam Questions Answers: https://drive.google.com/open?id=1BJoECBGzWsA2w3Ovdwe2yeiRscXY_okw