CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.0

Free NSE4_FGT-6.0 Exam Braindumps (page: 12)

Page 11 of 32
PDF with 127 Questions

An employee connects to the https://example.com on the Internet using a web browser. The web server's certificate was signed by a private internal C

  1. The FortiGate that is inspecting this traffic is configured for full SSL inspection.
    This exhibit shows the configuration settings for the SSL/SSH inspection profile that is applied to the policy that is invoked in this instance. All other settings are set to defaults. No certificates have been imported into FortiGate. View the exhibit and answer the question that follows.



    Which certificate is presented to the employee's web browser?
  2. The web server's certificate.
  3. The user's personal certificate signed by a private internal CA.
  4. A certificate signed by Fortinet_CA_SSL.
  5. A certificate signed by Fortinet_CA_Untrusted.

Answer(s): D



Examine this FortiGate configuration:



How does the FortiGate handle web proxy traffic coming from the IP address 10.2.1.200 that requires authorization?

  1. It always authorizes the traffic without requiring authentication.
  2. It drops the traffic.
  3. It authenticates the traffic using the authentication scheme SCHEME2.
  4. It authenticates the traffic using the authentication scheme SCHEME1.

Answer(s): D



Examine the exhibit, which shows the output of a web filtering real time debug.



Why is the site www.bing.com being blocked?

  1. The web site www.bing.com is categorized by FortiGuard as Malicious Websites.
  2. The user has not authenticated with the FortiGate yet.
  3. The web server IP address 204.79.197.200 is categorized by FortiGuard as Malicious Websites.
  4. The rating for the web site www.bing.com has been locally overridden to a category that is being blocked.

Answer(s): D



Which of the following statements are best practices for troubleshooting FSSO? (Choose two.)

  1. Include the group of guest users in a policy.
  2. Extend timeout timers.
  3. Guarantee at least 34 Kbps bandwidth between FortiGate and domain controllers.
  4. Ensure all firewalls allow the FSSO required ports.

Answer(s): A,D






Post your Comments and Discuss Fortinet NSE4_FGT-6.0 exam with other Community members:

NSE4_FGT-6.0 Discussions & Posts