Fortinet Exam FCP_FGT_AD-7.4 Topic 5 Question 10 Discussion

Actual exam question for Fortinet's FCP_FGT_AD-7.4 exam

Question #: 10
Topic #: 5

Refer to the exhibit.

A network administrator is troubleshooting an IPsec tunnel between two FortiGate devices. The administrator has determined that phase 1 status is up, but phase 2 fails to come up.

Based on the phase 2 configuration shown in the exhibit, which two configuration changes will bring phase 2 up? (Choose two.)

AOn Remote-FortiGate, set Seconds to 43200.

BOn HQ-FortiGate, enable Diffie-Hellman Group 2.

COn HQ-FortiGate, set Encryption to AES256.

DOn Remote-FortiGate, set Remote Address to 10.0.1.0/255.255.255.0.

Show Suggested Answer

Suggested Answer: C, D

by Stephaine at Feb 10, 2025, 09:16 AM

Limited Time Offer

25%

Off

Get Premium FCP_FGT_AD-7.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Gilbert

3 days ago

The Diffie-Hellman Group 2 setting on the HQ-FortiGate device seems off. That's probably the culprit.

upvoted 0 times

...

Mitsue

3 days ago

I think the answer is B.

upvoted 0 times

...