Fortinet NSE5_SSE_AD-7.6 - Fortinet NSE 5 - FortiSASE and SD-WAN 7.6 Core Administrator Exam
Page: 2 / 6
Total 30 questions
Question #6 (Topic: Exam A)
What is the purpose of the priority/failover connection feature in FortiSASE Geofencing for managing VPN connections?
A. It forces all remote users to connect only to the nearest security POP regardless of location.
B. It allows administrators to define rules to prioritize on-premises FortiGate connections for users in specific countries, with failover to a security POP if the FortiGate device is unavailable.
C. It restricts VPN access to users based on their geolocation without allowing failover options.
D. It automatically balances VPN traffic across all available security POPs without prioritizing on-premises devices.
Answer: B
Question #7 (Topic: Exam A)
What is the primary purpose of implementing a dedicated IP in security POPs?
A. To provide a unique identifier for logging and monitoring user activities across multiple networks
B. To ensure consistent and reliable access for specific users or devices
C. To implement geolocation rules and source IP address anchoring
D. To improve website performance by reducing load times
Answer: C
Question #8 (Topic: Exam A)
Refer to the exhibit.
Which two statements about the Vulnerability summary dashboard in FortiSASE are correct? (Choose two.)
Which two statements about the Vulnerability summary dashboard in FortiSASE are correct? (Choose two.)
A. Vulnerability scan is disabled in the endpoint profile.
B. The dashboard shows the vulnerability score for unknown applications.
C. Automatic vulnerability patching can be enabled for supported applications.
D. The dashboard allows the administrator to drill down and view CVE data and severity classifications.
Answer: CD
Question #9 (Topic: Exam A)
What is the primary function of FortiView on FortiSASE?
A. Presents raw log data in graphical format only, without sorting criteria or aggregated views.
B. Generates real-time alerts for security events and presents them in a single text-based console without metadata.
C. Displays individual logs on the GUI without aggregation, allowing administrators to sort events by time only.
D. Provides consolidated consoles to analyze security events over time using graphical or text-based log views.
Answer: D
Question #10 (Topic: Exam A)
Which two statements about configuring a steering bypass destination in FortiSASE are correct? (Choose two.)
A. You can select from four destination types: Infrastructure, FQDN, Local Application, or Subnet.
B. Apply condition allows split tunneling destinations to be applied to On-net, Off-net, or both types of endpoints.
C. Subnet is the only destination type that supports the Apply condition.
D. Apply condition can be set only to On-net or Off-net, but not both.
Answer: AB
