Fortinet NSE7_ZTA-7.2 - Fortinet NSE 7 - Zero Trust Access 7.2 Exam
Page: 1 / 10
Total 49 questions
Question #1 (Topic: Exam A)
Refer to the exhibit.
Based on the ZTNA logs provided, which statement is true?
Based on the ZTNA logs provided, which statement is true?
A. The Remote_User ZTNA tag has matched the ZTNA rule.
B. An authentication scheme is configured.
C. The external IP for ZTNA server is 10.122.0.139.
D. Traffic is allowed by firewall policy 1.
Answer: B
Question #2 (Topic: Exam A)
Refer to exhibit.
Which statement is true about the hr endpoint?
Which statement is true about the hr endpoint?
A. The endpoint is a rogue device.
B. The endpoint is disabled.
C. The endpoint is unauthenticated.
D. The endpoint has been marked at risk.
Answer: C
Question #3 (Topic: Exam A)
Which two types of configuration can you associate with a user/host profile on FortiNAC? (Choose two.)
A. Service Connectors
B. Network Access
C. Inventory
D. Endpoint compliance
Answer: BD
Question #4 (Topic: Exam A)
Which statement is true regarding a FortiClient quarantine using FortiAnalyzer playbooks?
A. FortiGate sends a notification to FortiClient EMS to quarantine the endpoint.
B. FortiAnalyzer discovers malicious activity in the logs and notifies FortiGate.
C. FortiAnalyzer sends an API to FortiClient EMS to quarantine the endpoint.
D. FortiClient sends logs to FortiAnalyzer.
Answer: C
Question #5 (Topic: Exam A)
An administrator is trying to create a separate web filtering profile for off-fabric and on-fabric clients and push it to managed FortiClient devices.
Where can you enable this feature on FortiClient EMS?
Where can you enable this feature on FortiClient EMS?
A. Endpoint policy
B. ZTNA connection rules
C. System settings
D. On-fabric rule sets
Answer: A
