Which two capabilities does FortiAuthenticator offer when acting as a self-signed or local CA? (Choose two)
A. Validating other CA CRLs using OSCP
B. Importing other CA certificates and CRLs
C. Merging local and remote CRLs using SCEP
D. Creating, signing, and revoking of X.509 certificates
Which interface services must be enabled for the SCEP client to connect to Authenticator?
A. OCSP
B. REST API
C. SSH
D. HTTP/HTTPS
A device or useridentity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis.
In this case, which user idendity discovery method can Fortiauthenticator use?
A. Syslog messaging or SAML IDP
B. Kerberos-base authentication
C. Radius accounting
D. Portal authentication
Which two SAML roles can Fortiauthenticator be configured as? (Choose two)
A. Idendity provider
B. Principal
C. Assertion server
D. Service provider
Which three of the following can be used as SSO sources? (Choose three)
A. FortiClient SSO Mobility Agent
B. SSH Sessions
C. FortiAuthenticator in SAML SP role
D. Fortigate
E. RADIUS accounting
How can a SAML metada file be used?
A. To defined a list of trusted user names
B. To import the required IDP configuration
C. To correlate the IDP address to its hostname
D. To resolve the IDP realm for authentication
Which two statements about the self-service portal are true? (Choose two)
A. Self-registration information can be sent to the user through email or SMS
B. Realms can be used to configure which seld-registeredusers or groups can authenticate on the network
C. Administrator approval is required for all self-registration
D. Authenticating users must specify domain name along with username
You want to monitor FortiAuthenticator system information and receive FortiAuthenticator traps through SNMP.
Which two configurations must be performed after enabling SNMP access on the FortiAuthenticator interface? (Choose two)
A. Enable logging services
B. Set the tresholds to trigger SNMP traps
C. Upload management information base (MIB) files to SNMP server
D. Associate an ASN, 1 mapping rule to the receiving host
Which behaviors exist for certificate revocation lists (CRLs) on FortiAuthenticator? (Choose two)
A. CRLs contain the serial number of the certificate that has been revoked
B. Revoked certificates are automaticlly placed on the CRL
C. CRLs can beexported only through the SCEP server
D. All local CAs share the same CRLs
Which of the following is an QATH-based standart to generate event-based, one-time password tokens?
A. OLTP
B. SOTP
C. HOTP
D. TOTP
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE6_FAC-6.1 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.