Fortinet Exam NSE6_FAC-6.4 Topic 5 Question 4 Discussion

Actual exam question for Fortinet's NSE6_FAC-6.4 exam

Question #: 4
Topic #: 5

[All NSE6_FAC-6.4 Questions]

Which behaviors exist for certificate revocation lists (CRLs) on FortiAuthenticator? (Choose two)

ACRLs contain the serial number of the certificate that has been revoked

BRevoked certificates are automaticlly placed on the CRL

CCRLs can be exported only through the SCEP server

DAll local CAs share the same CRLs

Show Suggested Answer

Suggested Answer: A, B

CRLs are lists of certificates that have been revoked by the issuing CA and should not be trusted by any entity. CRLs contain the serial number of the certificate that has been revoked, the date and time of revocation, and the reason for revocation. Revoked certificates are automatically placed on the CRL by the CA and the CRL is updated periodically. CRLs can be exported through various methods, such as HTTP, LDAP, or SCEP. Each local CA has its own CRL that is specific to its issued certificates. Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4/administration-guide/372408/certificate-management/372413/certificate-revocation-lists

by Fannie at Jul 06, 2023, 01:19 PM

Limited Time Offer

25%

Off

Get Premium NSE6_FAC-6.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!