Fortinet Exam NSE7_LED-7.0 Topic 1 Question 24 Discussion

Actual exam question for Fortinet's NSE7_LED-7.0 exam

Question #: 24
Topic #: 1

An administrator has configured an SSID in bridge mode for corporate employees All APs are online and provisioned using default AP profiles Employees are unable to locate the SSID to conned

Which two configurations can the administrator verify? (Choose two)

AVerify that the broadcast SSID option is enabled in the SSID configuration

BVerify that the Block Intra-SSID Traffic (intra-vap-privacy) option in the SSID configuration is disabled

CVerify that the SSID to an AP group that should be broadcasting the SSID is applied

DVerify that the SSID is manually applied on AP profiles for both 2 4 GHz and 5 GHz radios

Show Suggested Answer

Suggested Answer: A, B

According to the exhibit, the wireless guest users are getting a certificate error while loading the captive portal login page. This means that the browser cannot verify the identity of the server that is hosting the login page. Therefore, option A is true because the external server FQDN is incorrect, which means that it does not match the common name or subject alternative name of the server certificate. Option B is also true because the wireless user's browser is missing a CA certificate, which means that it does not have the root or intermediate certificate that issued the server certificate. Option C is false because the FortiGate authentication interface address is using HTTPS, which is a secure protocol that encrypts the communication between the browser and the server. Option D is false because the user address is not in DDNS form, which is not related to the certificate error.

by Lashandra at Jul 07, 2024, 08:10 PM

Limited Time Offer

25%

Off

Get Premium NSE7_LED-7.0 Questions as Interactive Web-Based Practice Test or PDF