New Release FCSS_NST_SE-7.6 Fortinet Certified Solution Specialist Questions

FCSS - Network Security 7.6 Support Engineer Questions and Answers

Question 9

Refer to the exhibit, which shows the partial output of a diagnose command.

Which two conclusions can you draw from the output shown in the exhibit? (Choose two.)

FortiGate will drop the expected traffic if it does not arrive within 23 seconds.

Clearing the master session has no impact on the expectation session.

This is a pinhole session to allow traffic for a TCP protocol that dynamically assigns TCP ports.

The session is checked against firewall policy ID 25.

Question 10

Which two statements are true regarding heartbeat messages sent from an FSSO collector agent to FortiGate? (Choose two.)

The heartbeat messages can be seen using the command diagnose debug authd fsso list.

The heartbeat messages can be seen in the collector agent logs.

The heartbeat messages can be seen on FortiGate using the real-lime FSSO debug.

The heartbeat messages must be manually enabled on FortiGate.

Question 11

Refer to the exhibit, which shows a partial output of a real-time LDAP debug.

What two conclusions can you draw from the output? (Choose two.)

The user was found in the LDAP tree, whose root is TAC.ottawa.fortinet.com.

FortiOS performs a bind to the LDAP server using the user's credentials.

FortiOS collects the user group information.

FortiOS is performing the second step (Search Request) in the LDAP authentication process.

Question 12

Refer to the exhibit, which shows a partial output of the real-time LDAP debug.

What two actions can the administrator take to resolve this issue? (Choose two.)

Ensure the user logs in using 'John Smith' not 'jsmith'.

Ensure the user is providing the correct user credentials.

Ensure the user is a member of at least one AD group to ensure step 4 of the LDAP authentication process is successful.

Ensure the account is active.