CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE4_FGT-6.2

Free NSE4_FGT-6.2 Exam Braindumps (page: 13)

Page 12 of 32
PDF with 132 Questions

What FortiGate configuration is required to actively prompt users for credentials?

  1. You must enable one or more protocols that support active authentication on a firewall policy
  2. You must position the firewall policy for active authentication before a firewall policy foe passive authentication.
  3. You must assign users to a group for active authentication
  4. You must enable the Authentication setting on the firewall policy

Answer(s): C



Which statements are true regarding firewall policy NAT using the outgoing interface IP address with fixed port disabled? (Choose two.)

  1. This is known as many-to-one NAT.
  2. Source IP is translated to the outgoing interface IP.
  3. Connections are tracked using source port and source MAC address.
  4. Port address translation is not used.

Answer(s): B,D



If the Issuer and Subject values are the same in a digital certificate, which type of entity was the certificate issued to?

  1. A CRL
  2. A person
  3. A subordinate CA
  4. A root CA

Answer(s): D



What is the limitation of using a URL list and application control on the same firewall policy, in NCFW policy-based mode?

  1. It limits the scope of application control to the browser-based technology category only.
  2. It limits the scope of application control to scan application traffic based on application category only.
  3. It limits the scope of application control to scan application traffic using parent signatures only
  4. It limits the scope of application control to scan application traffic on DNS protocol only.

Answer(s): D






Post your Comments and Discuss Fortinet NSE4_FGT-6.2 exam with other Community members:

NSE4_FGT-6.2 Discussions & Posts