● NSE 5 - FortiNAC 7.2 Exam Materials
Please note that the exam "NSE 5 - FortiNAC 7.2 Exam" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiNAC-F 7.6 Administrator"
The new exam version is available on Brave-Dumps and can be purchased.
It has been replaced by the exam "NSE 5 - FortiNAC-F 7.6 Administrator"
The new exam version is available on Brave-Dumps and can be purchased.
Question #41
Question #42
What method of communication does FortiNAC use to control VPN host access on FortiGate? (Choose one answer)
- A. RSSO
- B. Security Fabric
- C. SAML SSO
- D. RADIUS accounting
Question #43
An administrator wants to leverage logical networks so that a single network access policy will provision cameras to different networks at different locations.
Where are the logical network values defined?
(Choose one answer)
- A. In the User/Host profile of each network access policy
- B. In the Device Properties view of each device
- C. In the Profiled Devices view
- D. In the Model Configuration view of each infrastructure device
Question #44
Which three communication methods does FortiNAC use to gather information from and control infrastructure devices? (Choose three answers)
- A. CLI
- B. SNMP
- C. HTTP/HTTPS
- D. NMAP
- E. RADIUS
Question #45
During an evaluation of state-based enforcement, an administrator discovers that ports that should not be under enforcement have been added to enforcement groups.
In which view would the administrator be able to determine who added the ports to the groups?
(Choose one answer)
- A. The Event Management view
- B. The Alarms view
- C. The Security Events view
- D. The Admin Auditing view
Question #46
When configuring isolation networks in the configuration wizard, why does a Layer 3 network type allow for more than one DHCP scope for each isolation network type? (Choose one answer)
- A. Configuring more than one DHCP scope allows for DHCP server redundancy
- B. There can be more than one isolation network of each type
- C. Any scopes beyond the first scope are used if the initial scope runs out of IP addresses
- D. The Layer 3 network type allows for one scope for each possible host status
Question #47
Which system group forces at-risk hosts into the quarantine network, based on point of connection? (Choose one answer)
- A. Role Based Access
- B. Forced Isolation
- C. Forced Quarantine
- D. Forced Remediation
Question #48
Which two are required for endpoint compliance monitors? (Choose two answers)
- A. ZTNA agent
- B. MDM integration
- C. Persistent agent
- D. Custom scan
Question #49
Which two things must be done to allow FortiNAC to process incoming syslog messages from an unknown vendor? (Choose two answers)
- A. The device sending the messages must be modeled in the Network Inventory view
- B. A security event parser must be created for the device
- C. The device must be added as a patch management server
- D. The device must be added as a log receiver
Question #50
When FortiNAC passes a group or firewall tag value to FortiGate, what determines the value that is passed? (Choose one answer)
- A. Network access configuration
- B. RADIUS group attribute
- C. Device profiling rule
- D. Security rule
In an isolation VLAN, which three services does FortiNAC supply? (Choose three answers)