Attention please! Here is the shortcut to pass your NSE6_FNC-8.5 exam! Get yourself well prepared for the NSE 6 Network Security Specialist NSE6_FNC-8.5 Fortinet NSE 6 – FortiNAC 8.5 exam is really a hard job. But don’t worry! We We, provides the most update NSE6_FNC-8.5 actual tests. With We latest NSE6_FNC-8.5 new questions, you’ll pass the NSE 6 Network Security Specialist NSE6_FNC-8.5 Fortinet NSE 6 – FortiNAC 8.5 exam in an easy way
Visit our site to get more NSE6_FNC-8.5 Q and As:https://www.leads4pass.com/nse6_fnc-8-5.html (30 QAs Dumps)
Question 1:
How should you configure MAC notification traps on a supported switch?
A. Configure them only on ports set as 802.1q trunks
B. Configure them on all ports except uplink ports
C. Configure them on all ports on the switch
D. Configure them only after you configure linkup and linkdown traps
Correct Answer: B
Configure SNMP MAC Notification traps on all access ports (do not include uplinks).
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/be7fcde9-9685-11e9-81a4-00505692583a/Configuring_Traps_for_MAC_Notification.pdf
Question 2:
Which connecting endpoints are evaluated against all enabled device profiling rules?
A. Known trusted devices each time they change location
B. Rogues devices, each time they connect
C. Rogues devices, only when they connect for the first time
D. All hosts, each time they connect
Correct Answer: A
FortiNAC process to classify rogue devices and create an organized inventory of known trusted registered devices.
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/9529d49c-892c-11e9-81a4-00505692583a/FortiNAC_Device_Profiler_Configuration.pdf
Question 3:
Which two of the following are required for endpoint compliance monitors? (Choose two.)
A. Logged on user
B. Security rule
C. Persistent agent
D. Custom scan
Correct Answer: BD
DirectDefense\’s analysis of FireEye Endpoint attests that the products help meet the HIPAA Security Rule. In the menu on the left click the sign next to Endpoint Compliance to open it.
Reference: https://www.fireeye.com/content/dam/fireeye-www/products/pdfs/cg-pci-and-hipaa-compliances.pdf https://docs.fortinet.com/document/fortinac/8.5.2/administration-guide/92047/add-or-modify-a-scan
Question 4:
By default, if more than 20 hosts are seen connected on a single port simultaneously, what will happen to the port?
A. The port is added to the Forced Registration group.
B. The port is disabled.
C. The port is switched into the Dead-End VLAN.
D. The port becomes a threshold uplink.
Correct Answer: B
Question 5:
In a wireless integration, how does FortiNAC obtain connecting MAC address information?
A. Link traps
B. End station traffic monitoring
C. MAC notification traps
D. RADIUS
Correct Answer: D
Intelligent Access Points (IAPs) and controllers support two methods of RADIUS based authentication: RADIUS MAC authentication and 802.1x authentication.
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/9019f7f8-200d-11e9-b6f6-f8bc1258b856/FortiNAC_Wireless_Integration_Overview.pdf
Question 6:
Which system group will force at-risk hosts into the quarantine network, based on point of connection?
A. Forced Quarantine
B. Forced Remediation
C. Forced Isolation
D. Physical Address Filtering
Correct Answer: B
A remediation plan is established, including a forensic analysis and a reload of the system. Also, users are forced to change their passwords as the system held local user accounts. Reference: https://oit.rice.edu/quarantining-process-used-it-staff-members-introduction
Question 7:
During the on-boarding process through the captive portal, why would a host that successfully registered remain stuck in the Registration VLAN? (Choose two.)
A. The wrong agent is installed.
B. Bridging is enabled on the host.
C. There is another unregistered host on the same port.
D. The ports default VLAN is the same as the Registration VLAN.
Correct Answer: AD
Scenario 4: NAT detection disabled, using endpoint compliance policy and agent.
Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/868f1267-7299-11e9-81a4-00505692583a/fortinac-admin-operation-85.pdf
Question 8:
In which view would you find who made modifications to a Group?
A. The Admin Auditing view
B. The Alarms view
C. The Event Management view
D. The Security Events view
Correct Answer: A
It\’s important to audit Group Policy changes in order to determine the details of changes made to Group Policies by delegated users. Reference: https://www.lepide.com/how-to/audit-chnages-made-to-group-policy-objects.html
Question 9:
Which two agents can validate endpoint compliance transparently to the end user? (Choose two.)
A. Persistent
B. Dissolvable
C. Mobile
D. Passive
Correct Answer: AC
Mobile agents use the network transparently.
Reference: https://docs.fortinet.com/document/fortinac/8.3.0/administration-guide/377110/persistent-agent-certificate-validation https://docs.fortinet.com/document/fortinac/8.3.0/administration-guide/377110/persistent-agent-certificate-validation
Question 10:
Which command line shell and scripting language does FortiNAC use for WinRM?
A. Powershell
B. Bash
C. Linux
D. DOS
Correct Answer: A
Open Windows PowerShell or a command prompt. Run the following command to determine if you already have WinRM over HTTPS configured. Reference: https://docs.fortinet.com/document/fortinac/8.7.0/administration-guide/246310/winrm-device-profile-requirements-and-setup
Question 11:
Where are logical network values defined?
A. On the profiled devices view
B. In the port properties view of each port
C. In the model configuration view of each infrastructure device
D. In the security and access field of each host record
Correct Answer: D
Reference: https://www.sciencedirect.com/topics/computer-science/logical-network
Question 12:
Refer to the exhibit, and then answer the question below.
Which host is rogue?
A. 4
B. 2
C. 3
D. 1
Correct Answer: C
Reference: https://docs.fortinet.com/document/fortinac/8.6.0/administration-guide/283146/evaluating-rogue-hosts
Question 13:
When you create a user or host profile; which three criteria can you use? (Choose three.)
A. An applied access policy
B. Administrative group membership
C. Location
D. Host or user group memberships
E. Host or user attributes
Correct Answer: ACE
Reference: https://docs.fortinet.com/document/fortinac/8.3.0/administration-guide/15797/user-host-profiles
Question 14:
Which two methods can be used to gather a list of installed applications and application details from a host? (Choose two.)
A. Agent technology
B. MDM integration
C. Portal page on-boarding options
D. Application layer traffic inspection
Correct Answer: BC
Reference: https://developer.apple.com/business/documentation/MDM-Protocol-Reference.pdf https://docs.oracle.com/en/middleware/idm/identity-governance/12.2.1.3/omusg/managing-application-onboarding.html#GUID-4D0D5B18-A6F5-4231-852E-DB0D95AAE2D1
Question 15:
Which three of the following are components of a security rule? (Choose three.)
A. Methods
B. User or host profile
C. Security String
D. Trigger
E. Action
Correct Answer: ABE
Reference: https://patents.google.com/patent/US20150200969A1/en
Visit our site to get more NSE6_FNC-8.5 Q and As:https://www.leads4pass.com/nse6_fnc-8-5.html (30 QAs Dumps)