Fortinet Exam NSE7_ZTA-7.2 Topic 2 Question 15 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam

Question #: 15
Topic #: 2

[All NSE7_ZTA-7.2 Questions]

Which statement is true about disabled hosts on FortiNAC?

AThey are quarantined and placed in the remediation VLAN

BThey are placed in the authentication VLAN to reauthenticate

CThey are marked as unregistered rogue devices

DThey are placed in the dead end VLAN

Show Suggested Answer

Suggested Answer: A

In the scenario where FortiNAC has alarm mappings configured for MDM (Mobile Device Management) compliance failure and FortiClient EMS (Endpoint Management System) is integrated as an MDM connector, the typical response when an endpoint is quarantined by FortiClient EMS is to isolate the host in the registration VLAN. This action is consistent with FortiNAC's approach to network access control, focusing on ensuring network security and compliance. By moving the non-compliant or quarantined host to a registration VLAN, FortiNAC effectively segregates it from the rest of the network, mitigating potential risks while allowing for further investigation or remediation steps. Reference: FortiNAC documentation, MDM Compliance and Response Actions.

by Albert at Jun 30, 2024, 11:46 AM

Limited Time Offer

25%

Off

Get Premium NSE7_ZTA-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Julio

14 hours ago

I was initially leaning towards option D, but after reading the explanation, option A makes more sense. Quarantining the disabled hosts is a common network security practice.

upvoted 0 times

...

Glenna

2 days ago

I think the correct answer is A) They are quarantined and placed in the remediation VLAN.

upvoted 0 times

...

Patti

4 days ago

Option A seems to be the correct answer. Disabled hosts on FortiNAC are typically quarantined and placed in the remediation VLAN for further investigation and remediation.

upvoted 0 times

...