Spring Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

  1. Home
  2. Fortinet
  3. NSE 6 Network Security Specialist
  4. NSE6_FNC-9.1
  5. Fortinet NSE 6 - FortiNAC 9.1 Questions and Answers

NSE6_FNC-9.1 Fortinet NSE 6 - FortiNAC 9.1 Questions and Answers

Questions 4

Refer to the exhibit.

NSE6_FNC-9.1 Question 4

Considering the host status of the two hosts connected to the same wired port, what will happen if the port is a member of the Forced Registration port group?

Options:

A.

The port will be provisioned for the normal state host, and both hosts will have access to that VLAN.

B.

The port will not be managed, and an event will be generated.

C.

The port will be provisioned to the registration network, and both hosts will be isolated.

D.

The port will be administratively shut down.

Buy Now
Questions 5

Which two things must be done to allow FortiNAC to process incoming syslog messages from an unknown vendor? (Choose two.)

Options:

A.

A security event parser must be created for the device.

B.

The device sending the messages must be modeled in the Network Inventory view.

C.

The device must be added as a patch management server.

D.

The device must be added as a log receiver.

Buy Now
Questions 6

With enforcement for network access policies and at-risk hosts enabled, what will happen if a host matches a network access policy and has a state of "at risk"?

Options:

A.

The host is provisioned based on the default access defined by the point of connection.

B.

The host is provisioned based on the network access policy.

C.

The host is isolated.

D.

The host is administratively disabled.

Buy Now
Questions 7

Which two methods can be used to gather a list of installed applications and application details from a host? (Choose two.)

Options:

A.

Agent technology

B.

Portal page on-boarding options

C.

MDM integration

D.

Application layer traffic inspection

Buy Now
Questions 8

Which system group will force at-risk hosts into the quarantine network, based on point of connection?

Options:

A.

Physical Address Filtering

B.

Forced Quarantine

C.

Forced Isolation

D.

Forced Remediation

Buy Now
Questions 9

Which three of the following are components of a security rule? (Choose three.)

Options:

A.

Security String

B.

Methods

C.

Action

D.

User or host profile

E.

Trigger

Buy Now
Questions 10

Refer to the exhibit, and then answer the question below.

NSE6_FNC-9.1 Question 10

Which host is rogue?

Options:

A.

1

B.

3

C.

2

D.

4

Buy Now
Questions 11

Refer to the exhibit.

NSE6_FNC-9.1 Question 11

If a host is connected to a port in the Building 1 First Floor Ports group, what must also be true to match this user/host profile?

Options:

A.

The host must have a role value of contractor, an installed persistent agent or a security access value of contractor, and be connected between 6 AM and 5 PM.

B.

The host must have a role value of contractor or an installed persistent agent, a security access value of contractor, and be connected between 9 AM and 5 PM.

C.

The host must have a role value of contractor or an installed persistent agent and a security access value of contractor, and be connected between 6 AM and 5 PM.

D.

The host must have a role value of contractor or an installed persistent agent or a security access value of contractor, and be connected between 6 AM and 5 PM.

Buy Now
Questions 12

When FortiNAC passes a firewall tag to FortiGate, what determines the value that is passed?

Options:

A.

Security rule

B.

Device profiling rule

C.

RADIUS group attribute

D.

Logical network

Buy Now
Questions 13

What would happen if a port was placed in both the Forced Registration and the Forced Remediation port groups?

Options:

A.

Only rogue hosts would be impacted.

B.

Both enforcement groups cannot contain the same port.

C.

Only al-risk hosts would be impacted.

D.

Both types of enforcement would be applied.

Buy Now
Questions 14

By default, if more than 20 hosts are seen connected on a single port simultaneously, what will happen to the port?

Options:

A.

The port is switched into the Dead-End VLAN.

B.

The port becomes a threshold uplink.

C.

The port is disabled.

D.

The port is added to the Forced Registration group.

Buy Now
Exam Code: NSE6_FNC-9.1
Exam Name: Fortinet NSE 6 - FortiNAC 9.1
Last Update: May 17, 2026
Questions: 47

PDF + Testing Engine

$64.99  $185.69
buy now NSE6_FNC-9.1 pdf + testing engine

Testing Engine

$49.99  $142.83
buy now NSE6_FNC-9.1 testing engine

PDF (Q&A)

$54.99  $157.11
buy now NSE6_FNC-9.1 pdf