Fortinet Exam NSE6_FAC-6.4 Topic 3 Question 11 Discussion

Actual exam question for Fortinet's NSE6_FAC-6.4 exam

Question #: 11
Topic #: 3

An administrator has an active directory (AD) server integrated with FortiAuthenticator. They want members of only specific AD groups to participate in FSSO with their corporate FortiGate firewalls.

How does the administrator accomplish this goal?

AConfigure a FortiGate filter on FortiAuthenticatoc

BConfigure a domain groupings list to identify the desired AD groups.

CConfigure fine-grained controls on FortiAuthenticator to designate AD groups.

DConfigure SSO groups and assign them to FortiGate groups.

Show Suggested Answer

Suggested Answer: D

To allow members of only specific AD groups to participate in FSSO with their corporate FortiGate firewalls, the administrator can configure SSO groups and assign them to FortiGate groups. SSO groups are groups of users or devices that are defined on FortiAuthenticator based on various criteria, such as user group membership, source IP address, MAC address, or device type. FortiGate groups are groups of users or devices that are defined on FortiGate based on various criteria, such as user group membership, firewall policy, or authentication method. By mapping SSO groups to FortiGate groups, the administrator can control which users or devices can access the network resources protected by FortiGate.

by Bette at Oct 16, 2023, 05:51 PM

Limited Time Offer

25%

Off

Get Premium NSE6_FAC-6.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!