1. Home
  2. Fortinet
  3. NSE6_FAC-6.1

Fortinet NSE6_FAC-6.1 Online Practice Questions and Exam Preparation

NSE6_FAC-6.1 Exam Details

  • Exam Code
    :NSE6_FAC-6.1
  • Exam Name
    :Fortinet NSE 6 - FortiAuthenticator 6.1
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :30 Q&As
  • Last Updated
    :

Fortinet NSE6_FAC-6.1 Online Questions & Answers

  • Question 1:

    Which statement about the guest portal policies is true?

    A. Guest portal policies apply only to authentication requests coming from unknown RADIUS clients
    B. Guest portal policies can be used only for BYODs
    C. Conditions in the policy apply only to guest wireless users
    D. All conditions in the policy must match before a user is presented with the guest portal

  • Question 2:

    Which two statement about the RADIUS service on FortiAuthenticator are true? (Choose two)

    A. Two-factor authentication cannot be enforced when using RADIUS authentication
    B. RADIUS users can migrated to LDAP users
    C. Only local users can be authenticated through RADIUS
    D. FortiAuthenticator answers only to RADIUS client that are registered with FortiAuthenticator

  • Question 3:

    You are a Wi-Fi provider and host multiple domains. How do you delegate user accounts, user groups and permissions per domain when theyare authenticating on a single FortiAuthenticator device?

    A. Automatically import hosts from each domain as they authenticate
    B. Create multiple directory trees on FortiAuthenticator
    C. Create realms
    D. Create user groups

  • Question 4:

    Refer to the exhibit.

    Examine the screenshot shown in the exhibit.

    Which two statements regarding the configuration are true? (Choose two)

    A. All guest accounts created using the account registration feature will be placed under the Guest_Portal_Users group
    B. All accounts registered through the guest portal must be validated through email
    C. Guest users must fill in all the fields on the registration form
    D. Guest user account will expire after eight hours

  • Question 5:

    Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

    A. Service provider contacts idendity provider, idendity provider validates principal for service provider, service provider establishes communication with principal
    B. Principal contacts idendity provider and is redirected to serviceprovider, principal establishes connection with service provider, service provider validates authentication with identify provider
    C. Principal contacts service provider, service provider redirects principal to idendity provider, after succesfull authentication identify provider redirects principal to service provider
    D. Principal contacts idendity provider and authenticates, identity provider relays principal to service provider after valid authentication

  • Question 6:

    Which two protocols are the default management access protocols for administrative access for FortiAuthenticator? (Choose two)

    A. Telnet
    B. HTTPS
    C. SSH
    D. SNMP

  • Question 7:

    Which method is the most secure way of delivering FortiToken data once the token has been seeded?

    A. Online activation of the tokens through the FortiGuard network
    B. Shipment of the seed files on a CD using a tamper-evident envelope
    C. Using the in-house token provisioning tool
    D. Automatic token generation using FortiAuthenticator

  • Question 8:

    Which two are supported captive or guest portal authentication methods? (Choose two)

    A. Linkedln
    B. Apple ID
    C. Instagram
    D. Email

  • Question 9:

    A device or useridentity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis.

    In this case, which user idendity discovery method can Fortiauthenticator use?

    A. Syslog messaging or SAML IDP
    B. Kerberos-base authentication
    C. Radius accounting
    D. Portal authentication

  • Question 10:

    Which interface services must be enabled for the SCEP client to connect to Authenticator?

    A. OCSP
    B. REST API
    C. SSH
    D. HTTP/HTTPS

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE6_FAC-6.1 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.