CertsTopics Logo

Labour Day Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Fortinet NSE7_SAC-6.2 Dumps

Page: 1 / 1
Total 30 questions
Get NSE7_SAC-6.2 Full Access Download NSE7_SAC-6.2 PDF

Fortinet NSE 7 - Secure Access 6.2 Questions and Answers

Question 1

Which step can be taken to ensure that only FortiAP devices receive IP addresses from a DHCP server on FortiGate?

Options:

A.

Change the interface addressing mode toFortiAP devices.

B.

Create a reservation list in the DHCP server settings.

C.

Configure a VCI string value of FortiAP in the DHCP server settings.

D.

Use DHCP option 138 to assign IPs to FortiAP devices.

Question 2

Refer to the exhibit showing certificate values.

Wireless guest users are unable to authenticate because they are getting a certificate error while loading the captive portal login page This URL string is the HTTPS POST URL guest wireless users see when attempting to access the network using the web browser:

Which two settings are the likely causes of the issue? (Choose two.)

Options:

A.

The external server FQDN is incorrect.

B.

The FortiGate authentication interface address is using Hi IPS.

C.

The wireless user's browser is missing a CA certificate.

D.

The user address is not in DDNS form.

Question 3

A wireless network in a school provides guest accessusing a captive portal to allow unregistered users to self-register and access the network. The administrator is requested to update the existing configuration to provide captive portal authentication through a secure connection (HTTPS) to protect and encrypt guest user credentials after they receive the login information when registered for the first time.

Which two changes must the administrator make to enforce HTTPS authentication? (Choose two.)

Options:

A.

Provide instructions to users to use HTTPS to access the network

B.

Create a new SSID with the HTTPS captive portal URL

C.

Enable Redirect HTTP Challenge to a Secure Channel (HTTPS) in the user authentication settings

D.

Update the captive portal URL to use HTTPS on FortiGate and FortiAuthenticator

Question 4

Which CLI command should an administrator use to view the certificate validation process in real-time?

Options:

A.

diagnose debug application certd -1

B.

diagnose debug application fnbamd -1

C.

diagnose debug application authd -1

D.

diagnose debug application foauthd -1

Page: 1 / 1
Total 30 questions
Get NSE7_SAC-6.2 Full Access Download NSE7_SAC-6.2 PDF