View all questions & answers for the NSE 5 - FortiManager 7.6 Administrator Exam Materials exam


Question 24 Discussion

Refer to the exhibits. An administrator needs to push a FortiToken Mobile to assign it to HR_user in the HQ-NGFW-1. However, when installing the policy package, they receive the following error message: Copy device global objects Vdom copy failed: error -999 - Copy objects for vdom root "firewall policy", "1", id=5532, COMMIT FAIL - invalid value - prop[user fortitoken]: Mobile FortiToken FTFKMO84A9AC5C56D used by user local HR_user could not be found at device "user local", "FTKMOB4A9AC5C56D", id=5586, COMMIT FAIL - invalid value - prop[user fortitoken]: Mobile FortiToken FTFKMO84A9AC5C56D used by user local HR_user could not be found at device Why is the administrator not able to install the FortiToken on the HQ-NGFW-1 firewall? (Choose one answer)

  • A. The administrator must use a user local meta field to assign FortiToken.
  • B. The administrator must use a valid FortiToken that exists on HQ-NGFW-1.
  • C. The administrator must use a metadata variable to assign the same FortiToken to multiple users in FortiManager.
  • D. The administrator must use per-device mapping to assign the FortiToken to HQ-NGFW-1
Correct Answer: B

Brave-Dump Clients Votes

B 50%
D 50%

Comments



Omar Ahmed ([email protected]) 2025-10-09 05:06:58

Selected Answers: B


The error message clearly indicates:

"Mobile FortiToken FTFKMO84A9AC5C56D used by user local HR_user could not be found at device"

This means that the FortiToken being referenced in FortiManager does not exist on the target device (HQ-NGFW-1). FortiTokens must be physically present or registered on the FortiGate (HQ-NGFW-1) before they can be referenced in user configurations or pushed via FortiManager
  • Mohanad Salem 2026-02-13 13:56:48
    but the FortiToken its already exist on HQ-NGFW-1

eze 2025-11-22 01:52:55

Selected Answers: D


about the error:
Mobile FortiToken FTFKMO84A9AC5C56D used by user local HR_user could not be found at device
"user local", "FTKMOB4A9AC5C56D", id=5586, COMMIT FAIL - invalid value - prop[user fortitoken]:
Mobile FortiToken FTFKMO84A9AC5C56D used by user local HR_user could not be found at device
In the Fortigate the User no exist, exist only in FMG, the admin sould use device peer-mapping, so that this work correctly and this can create de user with its fortitoken.

eze 2025-11-22 01:55:55

Selected Answers: D


official guide of fortinet "FortiToken assignment requires that the local user exists on the target FortiGate."
"If the user does not exist, token deployment fails

Anonymous User 2026-02-07 17:37:57

Selected Answers: B


The Tokens the FMG is trying to push are different ones than the ones being present on the FGT.
Because the tokens do not exist on the FortiGate, the push failes.