● NSE 5 - FortiNAC 7.2 Exam Materials

Please note that the exam "NSE 5 - FortiNAC 7.2 Exam" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiNAC-F 7.6 Administrator"

The new exam version is available on Brave-Dumps and can be purchased.



Question #11
Comment Image Comment Image Comment Image

What would happen if the highlighted port with connected hosts was placed in both the Forced Registration and Forced Remediation port groups? (Choose one answer)

  • A. Multiple enforcement groups could not contain the same port
  • B. Both types of enforcement would be applied
  • C. Enforcement would be applied only to rogue hosts
  • D. Only the higher ranked enforcement group would be applied

Question #12
Comment Image Comment Image Comment Image

During configuration of high availability, what is required to use the shared IP address option? (Choose one answer)

  • A. The isolation network type is Layer 2
  • B. The isolation network type is Layer 3
  • C. The primary and secondary administrative interfaces are on the same subnet
  • D. A direct cable link between FortiNAC devices

Question #13
Comment Image Comment Image Comment Image

Which two policy types can be created on a FortiNAC Control Manager? (Choose two answers)

  • A. Supplicant EasyConnect
  • B. Endpoint Compliance
  • C. Network Access
  • D. Authentication

Question #14
Comment Image Comment Image Comment Image

When FortiNAC is managing FortiGate VPN users, why is an endpoint compliance policy necessary? (Choose one answer)

  • A. To validate the VPN client being used
  • B. To designate the required agent type
  • C. To confirm the installed endpoint certificate
  • D. To validate the VPN user credentials

Question #15
Comment Image Comment Image Comment Image

An administrator wants the Host At Risk event to generate an alarm. What is used to achieve this result? (Choose one answer)

  • A. An event to alarm mapping
  • B. A security filter activity
  • C. A security trigger activity
  • D. An event to action mapping

Question #16
Comment Image Comment Image Comment Image

During the on-boarding process through the captive portal, what are two reasons why a host that successfully registered would remain stuck in the Registration VLAN? (Choose two answers)

  • A. There is another unregistered host on the same port
  • B. The wrong agent is installed
  • C. The port default VLAN is the same as the Registration VLAN
  • D. There is no agent installed on the host

Question #17
Comment Image Comment Image Comment Image

Refer to the exhibit showing the Client command and output.

What is the current state of this host? (Choose one answer)

  • A. Not authenticated
  • B. Rogue
  • C. At-Risk
  • D. Registered

Question #18
Comment Image Comment Image Comment Image

Which FortiNAC agent is required in order to detect an added USB drive? (Choose one answer)

  • A. Dissolvable
  • B. Persistent
  • C. ZTNA Agent
  • D. Passive

Question #19
Comment Image Comment Image Comment Image

What causes a host state to change to “at risk”? (Choose one answer)

  • A. The host has been administratively disabled
  • B. The logged on user is not found in the active directory
  • C. The host was removed from the Registered Hosts group
  • D. The host has been marked as failed for an admin scan

Question #20
Comment Image Comment Image Comment Image

In a wireless integration, what method does FortiNAC use to obtain connecting MAC address information? (Choose one answer)

  • A. RADIUS
  • B. Endstation traffic monitoring
  • C. Link traps
  • D. SNMP traps