Tested Material Used To NSE6_FNC-8.5 Test Engine Exam Questions in here [Sep-2021]
Penetration testers simulate NSE6_FNC-8.5 exam PDF
NEW QUESTION 12
Which agent can receive and display messages from FortiNAC to the end user?
- A. Dissolvable
- B. Passive
- C. Persistent
- D. MDM
Answer: B
NEW QUESTION 13
What capability do logical networks provide?
- A. Autopopulation of device groups based on point of connection
- B. VLAN-based inventory reporting
- C. Application of different access values from a single access policy
- D. Interactive topology view diagrams
Answer: B
Explanation:
NTM also includes reporting utilities such as network and inventory reports. You can generate reports for subnets, switch ports, and VLANs.
Reference: https://logicalread.com/network-diagram/#.YBk9ZOgzbIU
NEW QUESTION 14
Which system group will force at-risk hosts into the quarantine network, based on point of connection?
- A. Physical Address Filtering
- B. Forced Quarantine
- C. Forced Remediation
- D. Forced Isolation
Answer: C
Explanation:
Explanation
A remediation plan is established, including a forensic analysis and a reload of the system. Also, users are forced to change their passwords as the system held local user accounts.
NEW QUESTION 15
Which two of the following are required for endpoint compliance monitors? (Choose two.)
- A. Custom scan
- B. Logged on user
- C. Security rule
- D. Persistent agent
Answer: A,C
NEW QUESTION 16
In which view would you find who made modifications to a Group?
- A. The Event Management view
- B. The Security Events view
- C. The Alarms view
- D. The Admin Auditing view
Answer: B
NEW QUESTION 17
What would happen if a port was placed in both the Forced Registration and the Forced Remediation port groups?
- A. Only al-risk hosts would be impacted.
- B. Both types of enforcement would be applied.
- C. Both enforcement groups cannot contain the same port.
- D. Only rogue hosts would be impacted.
Answer: D
NEW QUESTION 18
Where do you look to determine what network access policy, if any, is being applied to a particular host?
- A. The Policy Details view for the host
- B. The Port Properties view of the hosts port
- C. The Policy Logs view
- D. The network access policy configuration
Answer: D
NEW QUESTION 19
What causes a host's state to change to "at risk"?
- A. The host has been administratively disabled.
- B. The host has failed an endpoint compliance policy or admin scan.
- C. The host is not in the Registered Hosts group.
- D. The logged on user is not found in the Active Directory.
Answer: B
Explanation:
Explanation
Failure - Indicates that the host has failed the scan. This option can also be set manually. When the status is set to Failure the host is marked "At Risk" for the selected scan.
NEW QUESTION 20
What causes a host's state to change to "at risk"?
- A. The host has been administratively disabled.
- B. The host has failed an endpoint compliance policy or admin scan.
- C. The host is not in the Registered Hosts group.
- D. The logged on user is not found in the Active Directory.
Answer: B
Explanation:
Failure - Indicates that the host has failed the scan. This option can also be set manually. When the status is set to Failure the host is marked "At Risk" for the selected scan.
Reference: https://docs.fortinet.com/document/fortinac/8.3.0/administration-guide/241168/host-health-and- scanning
NEW QUESTION 21
What agent is required in order to detect an added USB drive?
- A. Persistent
- B. Dissolvable
- C. Mobile
- D. Passive
Answer: A
NEW QUESTION 22
In a wireless integration, how does FortiNAC obtain connecting MAC address information?
- A. MAC notification traps
- B. RADIUS
- C. End station traffic monitoring
- D. Link traps
Answer: B
Explanation:
Explanation
Intelligent Access Points (IAPs) and controllers support two methods of RADIUS based authentication:
RADIUS MAC authentication and 802.1x authentication.
NEW QUESTION 23
What would occur if both an unknown (rogue) device and a known (trusted) device simultaneously appeared on a port that is a member of the Forced Registration port group?
- A. The port would be administratively shut down.
- B. The port would not be managed, and an event would be generated.
- C. The port would be provisioned for the normal state host, and both hosts would have access to that VLAN.
- D. The port would be provisioned to the registration network, and both hosts would be isolated.
Answer: C
NEW QUESTION 24
Which three circumstances trigger Layer 2 polling of infrastructure devices? (Choose three.)
- A. Manual polling
- B. A failed Layer 3 poll
- C. Linkup and Linkdown traps
- D. A matched security policy
- E. Scheduled poll timings
Answer: A,C,E
NEW QUESTION 25
When you create a user or host profile, which three criteria can you use? (Choose three.)
- A. Administrative group membership
- B. Host or user attributes
- C. Host or user group memberships
- D. An applied access policy
- E. Location
Answer: A,D,E
NEW QUESTION 26
Where do you look to determine what network access policy, if any, is being applied to a particular host?
- A. The Policy Details view for the host
- B. The Port Properties view of the hosts port
- C. The Policy Logs view
- D. The network access policy configuration
Answer: D
Explanation:
Explanation/Reference: https://docs.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-np-overview
NEW QUESTION 27
......
Authentic Best resources for NSE6_FNC-8.5 Online Practice Exam: https://www.pdfdumps.com/NSE6_FNC-8.5-valid-exam.html