View all questions & answers for the NSE 6 – LAN Edge 7.6 Architect Exam Materials exam


Question 27 Discussion

Refer to the exhibits to analyze a network topology and SSID settings. FortiGate is configured to use an external captive portal for authentication to grant access to a wireless network. Testing detected that users attempting to access the SSID are not able to access the captive portal login page. Which configuration change should fix this issue? (Choose one answer)

  • A. Change the SSID security mode to WPA2-Enterprise for authentication.
  • B. Firewall policy with the ID 13 must have NAT disabled.
  • C. Address objects FortiAuthenticator and WindowsAD must be included as exempt destinations/services.
  • D. A firewall policy with port4 as source is missing.
Correct Answer: D

Brave-Dump Clients Votes

C 100%

Comments



Mohamed Shaban 2026-02-22 13:27:02

Selected Answers: C


The missing configuration is a firewall policy that allows users’ unauthenticated traffic to reach the captive portal, as described on page p267.
In other words, you must have a policy from the user-facing interface that permits HTTP/HTTPS (and usually DNS) so the FortiGate can intercept the request and present the captive portal login page
so I think there is missing option for this question