Refer to the exhibit, which shows a firewall policy to enable active authentication. When attempting to access an external website using an active authentication method, the user is not presented with a login prompt. What is the most likely reason for this situation? (Choose one answer)

A. The Service DNS is required in the firewall policy.
B. The Remote-users group must be set up correctly in the FSSO configuration.
C. No matching user account exists for this user.
D. The Remote-users group is not added to the Destination.

Correct Answer: A

Brave-Dump Clients Votes

A 100%

Comments

Roberto Kevin Conopuma Damián 2025-10-21 10:32:17

Selected Answers: A

“DNS is usually used by HTTP so that people can use domain names for websites, instead of their IP address. DNS is allowed because it is a base protocol and will most likely be required to initially see proper authentication protocol traffic... However, the DNS service must still be defined in the policy as allowed, in order for it to pass.” Study Guide (p. 136)