Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE6_FAC-6.4 Topic 3 Question 17 Discussion

Actual exam question for Fortinet's NSE6_FAC-6.4 exam
Question #: 17
Topic #: 3
[All NSE6_FAC-6.4 Questions]

An administrator wants to keep local CA cryptographic keys stored in a central location.

Which FortiAuthenticator feature would provide this functionality?

Show Suggested Answer Hide Answer
Suggested Answer: A, D

FortiAuthenticator can be configured as a SAML identity provider (IdP) or a SAML service provider (SP). As an IdP, FortiAuthenticator authenticates users and issues SAML assertions to SPs. As an SP, FortiAuthenticator receives SAML assertions from IdPs and grants access to users based on the attributes in the assertions. Principal and assertion server are not valid SAML roles. Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4/administration-guide/372407/saml


Contribute your Thoughts:

Ryann
6 days ago
I'm not sure, but I think A) SCEP support could also be a good choice for this scenario.
upvoted 0 times
...
Brittney
7 days ago
I agree with Trinidad, Network HSM is the best option for storing keys centrally.
upvoted 0 times
...
Trinidad
8 days ago
I think the answer is C) Network HSM because it can securely store cryptographic keys.
upvoted 0 times
...

Save Cancel