Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE6_FAC-6.4 Topic 3 Question 17 Discussion

Actual exam question for Fortinet's NSE6_FAC-6.4 exam
Question #: 17
Topic #: 3
[All NSE6_FAC-6.4 Questions]

Which two SAML roles can Fortiauthenticator be configured as? (Choose two)

Show Suggested Answer Hide Answer
Suggested Answer: A, D

FortiAuthenticator can be configured as a SAML identity provider (IdP) or a SAML service provider (SP). As an IdP, FortiAuthenticator authenticates users and issues SAML assertions to SPs. As an SP, FortiAuthenticator receives SAML assertions from IdPs and grants access to users based on the attributes in the assertions. Principal and assertion server are not valid SAML roles. Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4/administration-guide/372407/saml


Contribute your Thoughts:

Barbra
6 months ago
I'm not so sure about that, Sherell. I think it's only Idendity provider and Service provider.
upvoted 0 times
...
Sherell
6 months ago
I believe Assertion server is also a possible role for Fortiauthenticator.
upvoted 0 times
...
Gayla
7 months ago
I agree with Barbra. Idendity provider and Service provider are the two SAML roles for Fortiauthenticator.
upvoted 0 times
...
Barbra
7 months ago
I think Fortiauthenticator can be configured as Idendity provider and Service provider.
upvoted 0 times
...
Avery
7 months ago
I heard some people say it can also be configured as an Assertion server.
upvoted 0 times
...
Elliot
7 months ago
Yes, that's correct. It can also be configured as a Service provider.
upvoted 0 times
...
Lashon
7 months ago
I think Fortiauthenticator can be configured as an Identity provider.
upvoted 0 times
...
Ona
8 months ago
Haha, I bet the exam creators are trying to trip us up with those other options. 'Principal' and 'assertion server' don't sound like standard SAML roles to me. Time to focus on the real possibilities.
upvoted 0 times
...
Caren
8 months ago
Okay, let's think this through. A and D seem like the obvious choices - identity provider and service provider. But what about B and C? I'm stumped on those.
upvoted 0 times
...
Vannessa
8 months ago
I'm pretty sure Fortiauthenticator can be configured as an identity provider, but I'm not sure about the other SAML roles. This question is testing our knowledge of the product's capabilities.
upvoted 0 times
...
Javier
8 months ago
Hmm, this SAML question seems straightforward, but I wonder if there's a catch. Fortiauthenticator is usually thought of as an identity provider, but could it also act as a service provider in certain scenarios?
upvoted 0 times
Hayley
7 months ago
That makes sense, it can handle identity and assertions
upvoted 0 times
...
Tawna
7 months ago
C) Assertion server
upvoted 0 times
...
Sean
8 months ago
A) Idendity provider
upvoted 0 times
...
Gerry
8 months ago
Yeah, I agree. It can play both roles depending on the setup
upvoted 0 times
...
Adelina
8 months ago
I think it can be both
upvoted 0 times
...
Carlota
8 months ago
D) Service provider
upvoted 0 times
...
Joseph
8 months ago
A) Idendity provider
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77