Fortinet Exam NSE7_LED-7.0 Topic 1 Question 14 Discussion

Actual exam question for Fortinet's NSE7_LED-7.0 exam

Question #: 14
Topic #: 1

Refer to the exhibit.

Examine the FortiSwitch security policy shown in the exhibit

If the security profile shown in the exhibit is assigned to all ports on a FortiSwitch device for 802 1X authentication which statement about the switch is correct?

AFortiSwitch cannot authenticate multiple devices connected to the same port

BFortiSwitch will try to authenticate non-802 1X devices using the device MAC address as the username and password

CFortiSwitch will assign non-802 1X devices to the onboarding VLAN

DAll EAP messages will be terminated on FortiSwitch

Show Suggested Answer

Suggested Answer: A, B

According to the exhibit, the wireless guest users are getting a certificate error while loading the captive portal login page. This means that the browser cannot verify the identity of the server that is hosting the login page. Therefore, option A is true because the external server FQDN is incorrect, which means that it does not match the common name or subject alternative name of the server certificate. Option B is also true because the wireless user's browser is missing a CA certificate, which means that it does not have the root or intermediate certificate that issued the server certificate. Option C is false because the FortiGate authentication interface address is using HTTPS, which is a secure protocol that encrypts the communication between the browser and the server. Option D is false because the user address is not in DDNS form, which is not related to the certificate error.

by Jesusa at Mar 07, 2024, 05:33 AM

Limited Time Offer

25%

13 days ago

I think the answer is C.

upvoted 0 times

...