● NSE 5 - FortiNAC 7.2 Exam Materials
Please note that the exam "NSE 5 - FortiNAC 7.2 Exam" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiNAC-F 7.6 Administrator"
The new exam version is available on Brave-Dumps and can be purchased.
It has been replaced by the exam "NSE 5 - FortiNAC-F 7.6 Administrator"
The new exam version is available on Brave-Dumps and can be purchased.
Question #31
Question #32
View the output Below,
Examine the communication between a primary FortiNAC (192.168.10.10) and a secondary FortiNAC (192.168.10.110) configured as an HA pair. What is the current state of the FortiNAC HA pair?
(Choose one answer)
- A. Failover from the primary server to the secondary server is in progress
- B. The secondary server is running and in control
- C. The primary server is running and in control
- D. The database replication failed
Question #33
Refer to the exhibit showing the Client command and output.
What is the current state of this host?
(Choose one answer)
- A. Rogue
- B. Not authenticated
- C. At-Risk
- D. Registered
Question #34
Two FortiNAC devices have been configured in an HA configuration. After five failed heartbeats between the primary device and secondary device, the primary device fails to ping the designated gateway.
What happens next?
(Choose one answer)
- A. The primary device changes its designation to secondary, and the secondary device changes to primary
- B. The primary device waits 3 minutes and attempts to re-establish the HA heartbeat before attempting a second ping of the gateway
- C. The primary device continues to operate as the in-control device and changes the status of secondary device to contact lost
- D. The primary device shuts down NAC processes and changes to a management down status
Question #35
Which two device classification options can register a device automatically and transparently to the end user? (Choose two answers)
- A. Dissolvable agent
- B. Captive portal
- C. Dot1x Auto Registration
- D. MDM integration
Question #36
Which three capabilities does FortiNAC Control Manager provide? (Choose three answers)
- A. Global authentication security policies
- B. Global version control
- C. Global visibility
- D. Global infrastructure device inventory
- E. Pooled licenses
Question #37
Considering the host status of the two hosts connected to the same wired port, what will happen if the port is a member of the Forced Registration port group? (Choose one answer)
- A. The port will be provisioned to the registration network, and both hosts will be isolated
- B. The port will be added to the Access Point Management group
- C. The port will be provisioned for the normal state host, and both hosts will have access to that VLAN
- D. The port will have shared media enforcement applied
Question #38
Refer to the exhibit
If a host is connected to a port in the Building 1 First Floor Ports group, what must also be true to match this user/host profile?
(Choose one answer)
- A. The host must have a role value of contractor or an installed persistent agent, a security access value of contractor, and be connected between 9 AM and 5 PM
- B. The host must have a role value of contractor, an installed persistent agent or a security access value of contractor, and be connected between 6 AM and 5 PM
- C. The host must have a role value of contractor or an installed persistent agent and a security access value of contractor, and be connected between 6 AM and 5 PM
- D. The host must have a role value of contractor or an installed persistent agent or a security access value of contractor, and be connected between 6 AM and 5 PM
Question #39
How does FortiGate update FortiNAC about VPN session information? (Choose one answer)
- A. SNMP traps
- B. Syslog messages
- C. API calls to FortiNAC
- D. Security Fabric integration
Question #40
Which agent is used only as part of a login script? (Choose one answer)
- A. Mobile
- B. Passive
- C. Persistent
- D. Dissolvable
Refer to the exhibit.
If you are forcing the registration of unknown (rogue) hosts, and an unknown (rogue) host connects to a port on the switch, what occurs? (Choose one answer)