Labour Day Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 713PS592

  1. Home
  2. Fortinet
  3. NSE 6 Network Security Specialist
  4. NSE6_FNC-9.1
  5. Fortinet NSE 6 - FortiNAC 9.1 Questions and Answers

NSE6_FNC-9.1 Fortinet NSE 6 - FortiNAC 9.1 Questions and Answers

Questions 4

An administrator is configuring FortiNAC to manage FortiGate VPN users. As part of the configuration, the administrator must configure a few FortiGate firewall policies.

What is the purpose of the FortiGate firewall policy that applies to unauthorized VPN clients?

Options:

A.

To deny access to only the production DNS server

B.

To allow access to only the FortiNAC VPN interface

C.

To allow access to only the production DNS server

D.

To deny access to only the FortiNAC VPN interface

Buy Now
Questions 5

Refer to the exhibit, and then answer the question below.

NSE6_FNC-9.1 Question 5

Which host is rogue?

Options:

A.

1

B.

3

C.

2

D.

4

Buy Now
Questions 6

In an isolation VLAN which three services does FortiNAC supply? (Choose three.)

Options:

A.

NTP

B.

DHCP

C.

Web

D.

DNS

E.

ISMTP

Buy Now
Questions 7

Which two of the following are required for endpoint compliance monitors? (Choose two.)

Options:

A.

Persistent agent

B.

Logged on user

C.

Security rule

D.

Custom scan

Buy Now
Questions 8

How are logical networks assigned to endpoints?

Options:

A.

Through device profiling rules

B.

Through network access policies

C.

Through Layer 3 polling configurations

D.

Through FortiGate IPv4 policies

Buy Now
Questions 9

When FortiNAC passes a firewall tag to FortiGate, what determines the value that is passed?

Options:

A.

Security rule

B.

Device profiling rule

C.

RADIUS group attribute

D.

Logical network

Buy Now
Questions 10

Which system group will force at-risk hosts into the quarantine network, based on point of connection?

Options:

A.

Physical Address Filtering

B.

Forced Quarantine

C.

Forced Isolation

D.

Forced Remediation

Buy Now
Questions 11

Refer to the exhibit.

NSE6_FNC-9.1 Question 11

If you are forcing the registration of unknown (rogue) hosts, and an unknown (rogue) host connects to a port on the switch, what occurs?

Options:

A.

The host is moved to VLAN 111.

B.

The host is moved to a default isolation VLAN.

C.

No VLAN change is performed.

D.

The host is disabled.

Buy Now
Questions 12

View the command and output.

NSE6_FNC-9.1 Question 12

What is the state of database replication?

Options:

A.

Secondary to primary synchronization failed.

B.

Primary to secondary synchronization failed.

C.

Secondary to primary synchronization was successful.

D.

Primary to secondary database synchronization was successful.

Buy Now
Questions 13

With enforcement for network access policies and at-risk hosts enabled, what will happen if a host matches a network access policy and has a state of "at risk"?

Options:

A.

The host is provisioned based on the default access defined by the point of connection.

B.

The host is provisioned based on the network access policy.

C.

The host is isolated.

D.

The host is administratively disabled.

Buy Now
Questions 14

Which two agents can validate endpoint compliance transparently to the end user? (Choose two.)

Options:

A.

Dissolvable

B.

Mobile

C.

Passive

D.

Persistent

Buy Now
Exam Code: NSE6_FNC-9.1
Exam Name: Fortinet NSE 6 - FortiNAC 9.1
Last Update: Apr 27, 2024
Questions: 47

PDF + Testing Engine

$66.4  $165.99
buy now NSE6_FNC-9.1 pdf + testing engine

Testing Engine

$46  $114.99
buy now NSE6_FNC-9.1 testing engine

PDF (Q&A)

$42  $104.99
buy now NSE6_FNC-9.1 pdf