Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE5_FNC_AD-7.6

Fortinet NSE5_FNC_AD-7.6 Exam Questions
Fortinet NSE 5 - FortiNAC-F 7.6 Administrator (Page 2 )

Updated On: 9-Apr-2026
Page 2 of 9
PDF with 58 Questions

While discovering network infrastructure devices, a switch appears in the inventory topology with a question mark (?) on the icon.

What would cause this?

  1. The wrong SNMP community string was entered during discovery.
  2. The SNMP ObjectID is not recognized by FortiNAC-F.
  3. A read-only SNMP community string was used.
  4. SNMP is not enabled on the switch.

Answer(s): B

Explanation:

A question mark on a switch icon in the FortiNAC-F inventory topology indicates that the device was discovered via SNMP, but its SNMP ObjectID does not match any known or supported device profile. As a result, FortiNAC-F cannot identify the device type or vendor and displays it as an unknown device.



An administrator manages a corporate environment where all users log into the corporate domain each time they connect to the network. The administrator wants to leverage login scripts to use a FortiNAC-F agent to enhance endpoint visibility.

Which agent can be deployed as part of a login script?

  1. Persistent
  2. Dissolvable
  3. Mobile
  4. Passive

Answer(s): B

Explanation:

The dissolvable agent is designed to be executed at user login and does not require permanent installation on the endpoint. This makes it suitable for deployment through domain login scripts, where it can run temporarily to collect endpoint posture and visibility information and then remove itself after execution.



An administrator wants to control user access to corporate resources by integrating FortiNAC-F with FortiGate using firewall tags defined on FortiNAC-F.

Where would the administrator assign the firewall tag value that will be sent to FortiGate?

  1. RADIUS group attribute
  2. Logical network
  3. Device profiling rule
  4. Security rule

Answer(s): D

Explanation:

Firewall tags that are shared with FortiGate are assigned within FortiNAC-F security rules. These rules determine the access level and enforcement actions for endpoints, and the associated firewall tag value is sent to FortiGate so it can dynamically apply corresponding security policies.



Which two requirements must be met to set up an N+1 HA cluster? (Choose two.)

  1. A FortiNAC-F manager
  2. A FortiNAC-F device designated as a secondary
  3. A dedicated VLAN for primary and secondary synchronization
  4. At least two FortiNAC-F devices designated as primary

Answer(s): A,B

Explanation:

An N+1 HA cluster in FortiNAC-F requires a FortiNAC-F manager to coordinate and control the HA environment, as well as one or more FortiNAC-F devices designated as secondary to provide redundancy and failover support.



In which three ways would deploying a FortiNAC-F Manager into a large environment consisting of several FortiNAC-F Cas simplify management? (Choose three.)

  1. Global infrastructure device inventory
  2. Global version control
  3. Global authentication security policies
  4. Pooled licenses
  5. Global visibility

Answer(s): A,C,E

Explanation:

Deploying a FortiNAC-F Manager centralizes the infrastructure device inventory across all managed CAs, allowing consistent visibility into network devices. It also enables the creation and management of global authentication and security policies that can be enforced uniformly across the environment. Additionally, the Manager provides global visibility, giving administrators a consolidated view of endpoints, users, and network activity across all FortiNAC-F CAs.



An administrator wants to create a conference manager administrator account but would like to limit the number of conference accounts that can be generated to 30.

Which statement about conference accounts is true?

  1. In FortiNAC-F, conference accounts can be limited by multiples of 25, so the conference administrator could create 50 accounts.
  2. The administrator can set a maximum of 30 conference accounts in the administrative profile for the conference manager.
  3. The conference account limit is defined in the onboarding conference portal.
  4. Conference account limits are defined in the conference guest and contractor template.

Answer(s): A

Explanation:

FortiNAC-F enforces conference account limits in fixed increments of 25. Because of this predefined constraint, an administrator cannot set an exact limit of 30 accounts, and the closest allowable configuration would permit the creation of 50 conference accounts.



Refer to the exhibits.





An administrator has configured the DHCP scope for a registration isolation network, but the isolation process isn't working.

What is the problem with the configuration?

  1. The domain name server designation is incorrect.
  2. The label uses a system-reserved value.
  3. The lease pool does not contain a complete subnet.
  4. The gateway defined for the scope is incorrect.

Answer(s): D

Explanation:

The DHCP scope is for the registration isolation subnet (192.168.180.0/24), so clients receiving addresses from this scope must also receive a default gateway in that same subnet to reach the registration network and portal.
The scope is incorrectly handing out 10.0.1.254 instead of the registration network gateway (192.168.180.1), which breaks isolation connectivity.



A healthcare organization is integrating FortiNAC-F with its existing MDM. Communication is failing between the systems.

What could be a probable cause?

  1. Security Fabric traffic is failing
  2. SSH communication is failing
  3. REST API communication is failing
  4. SOAP API communication is failing

Answer(s): C

Explanation:

FortiNAC-F typically integrates with MDM platforms using REST-based API calls for device information, compliance status, and actions. If communication is failing between FortiNAC-F and the MDM, a common cause is a failure in the REST API channel, such as incorrect API URL, token/credentials, certificate/SSL trust issues, or blocked HTTPS connectivity.



Viewing page 2 of 9
Viewing questions 9 - 16 out of 58 questions



Post your Comments and Discuss Fortinet NSE5_FNC_AD-7.6 exam dumps with other Community members:

NSE5_FNC_AD-7.6 Exam Discussions & Posts

AI Tutor AI Tutor 👋 I’m here to help!