Winter Special Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 713PS592

NSE7_ZTA-7.2 Fortinet NSE 7 - Zero Trust Access 7.2 Questions and Answers

Questions 4

An administrator wants to prevent direct host-to-host communication at layer 2 and use only FortiGate to inspect all the VLAN traffic What three things must the administrator configure on FortiGate to allow traffic between the hosts? (Choose three.)

Options:

A.

Configure proxy ARP to allow traffic

B.

Block intra-VLAN traffic in the VLAN interface settings

C.

Add the VLAN interface to a software switch

D.

Configure static routes to allow subnets

E.

Configure a firewall policy to allow the desired traffic between hosts

Buy Now
Questions 5

FortiNAC has alarm mappings configured for MDM compliance failure, and FortiClient EMS is added as a MDM connector When an endpoint is quarantined by FortiClient EMS, what action does FortiNAC perform?

Options:

A.

The host is isolated in the registration VLAN

B.

The host is marked at risk

C.

The host is forced to authenticate again

D.

The host is disabled

Buy Now
Questions 6

Exhibit.

NSE7_ZTA-7.2 Question 6

Based on the ZTNA logs provided, which statement is true?

Options:

A.

The Remote_user ZTNA tag has matched the ZTNA rule

B.

An authentication scheme is configured

C.

The external IP for ZTNA server is 10 122 0 139.

D.

Traffic is allowed by firewall policy 1

Buy Now
Questions 7

exhibit.

NSE7_ZTA-7.2 Question 7

User student is not able to log in to SSL VPN

Given the output showing a real-time debug: which statement describes the login failure?

Options:

A.

Unable to verify chain of trust for the peer certificate

B.

CN does not match the user peer configuration

C.

student is not part of the usergroup SSL_VPN_Users.

D.

Client certificate has expired

Buy Now
Questions 8

What are two functions of NGFW in a ZTA deployment? (Choose two.)

Options:

A.

Acts as segmentation gateway

B.

Endpoint vulnerability management

C.

Device discovery and profiling

D.

Packet Inspection

Buy Now
Questions 9

Which three methods can you use to trigger layer 2 polling on FortiNAC? (Choose three)

Options:

A.

Polling scripts

B.

Link traps

C.

Manual polling

D.

Scheduled tasks

E.

Polling using API

Buy Now
Exam Code: NSE7_ZTA-7.2
Exam Name: Fortinet NSE 7 - Zero Trust Access 7.2
Last Update: Dec 3, 2024
Questions: 30

PDF + Testing Engine

$66  $164.99

Testing Engine

$50  $124.99
buy now NSE7_ZTA-7.2 testing engine

PDF (Q&A)

$42  $104.99
buy now NSE7_ZTA-7.2 pdf