CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE7_EFW-6.4

Free NSE7_EFW-6.4 Exam Braindumps (page: 13)

Page 13 of 26
PDF with 122 Questions

A corporate network allows Internet Access to FSSO users only. The FSSO user student does not have Internet access after successfully logged into the Windows AD network. The output of the `diagnose debug authd fsso list' command does not show student as an active FSSO user. Other FSSO users can access the Internet without problems.
What should the administrator check? (Choose two.)

  1. The user student must not be listed in the CA's ignore user list.
  2. The user student must belong to one or more of the monitored user groups.
  3. The student workstation's IP subnet must be listed in the CA's trusted list.
  4. At least one of thestudent's user groups must be allowed by a FortiGate firewall policy.

Answer(s): A,D


Reference:

https://kb.fortinet.com/kb/documentLink.do?externalID=FD38828



A FortiGate device has the following LDAP configuration:



The LDAP user student cannot authenticate. The exhibit shows the output of the authentication real time debug while testing the student account:



Based on the above output, what FortiGate LDAP settings must the administer check? (Choose two.)

  1. cnid.
  2. username.
  3. password.
  4. dn.

Answer(s): B,C


Reference:

https://kb.fortinet.com/kb/viewContent.do?externalId=13141



An administrator is running the following sniffer in a FortiGate:

diagnose sniffer packet any "host 10.0.2.10" 2

What information isincluded in the output of the sniffer? (Choose two.)

  1. Ethernet headers.
  2. IP payload.
  3. IP headers.
  4. Port names.

Answer(s): B,C


Reference:

https://kb.fortinet.com/kb/documentLink.do?externalID=11186



Which of the following statements is trueregarding a FortiGate configured as an explicit web proxy?

  1. FortiGate limits the number of simultaneous sessions per explicit web proxy user. This limit CANNOT be modified by the administrator.
  2. FortiGate limits the total number of simultaneous explicit web proxy users.
  3. FortiGate limits the number of simultaneous sessions per explicit web proxy user The limit CAN be modified by the administrator
  4. FortiGate limits the number of workstations that authenticate using the same web proxy usercredentials. This limit CANNOT be modified by the administrator.

Answer(s): B

Explanation:

The explicit proxy does not limit the number of active sessions for each user. As a result the actual explicit proxy session count is usually much higherthan the number of explicit web proxy users. If an excessive number of explicit web proxy sessions is compromising system performance you can limit the amount of users if the FortiGate unit is operating with multiple VDOMs.


Reference:

https://help.fortinet.com/fos50hlp/52data/Content/FortiOS/fortigate-WAN-opt- 52/web_proxy.htm#Explicit2



Page 13 of 26



Post your Comments and Discuss Fortinet NSE7_EFW-6.4 exam with other Community members:

Jonathan commented on June 23, 2022
Thank you brain-dumps team. Your exam dump helped me pass the exam.
UNITED STATES
upvote