New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 11 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 11
Topic #: 1
[All NSE7_PBC-7.2 Questions]

A customer would like to use FortiGate fabric integration With FortiCNP

When configuring a FortiGate VM to add to FortiCNP, which three mandatory configuration steps must you follow on FortiGate? (Choose three.)

Show Suggested Answer Hide Answer
Suggested Answer: A, B, D

To configure a FortiGate VM to add to FortiCNP, you need to perform three steps on FortiGate:

Enable send logs in FortiGate to allow FortiCNP to receive the IPS logs from FortiGate.

Create an SSL/SSH inspection profile on FortiGate to inspect the encrypted traffic and apply IPS protection.

Create an IPS sensor and a firewall policy on FortiGate to enable IPS detection and prevention for the traffic.


FortiCNP 22.4.a Administration Guide, page 22-24

FortiGate IPS Administration Guide, page 9-10

Contribute your Thoughts:

Maryrose
6 months ago
I agree, creating an SSL/SSH inspection profile enhances security for data inspection.
upvoted 0 times
...
Chan
6 months ago
I think creating an SSL/SSH inspection profile is necessary for secure communication.
upvoted 0 times
...
Charisse
6 months ago
Yes, creating an IPS sensor and firewall policy ensures security measures are in place.
upvoted 0 times
...
Latricia
6 months ago
I believe creating an IPS sensor and a firewall policy is also a crucial step.
upvoted 0 times
...
Maryrose
6 months ago
I agree with Charisse, enabling send logs is important for FortiCNP integration.
upvoted 0 times
...
Charisse
7 months ago
I think the first step is to enable send logs.
upvoted 0 times
...
Micah
7 months ago
I believe creating an SSL/SSH inspection profile is another mandatory step for the configuration.
upvoted 0 times
...
Malinda
7 months ago
Creating an IPS sensor and a firewall policy is also important to follow for integration.
upvoted 0 times
...
Nina
7 months ago
I think enabling send logs is one of the mandatory steps for configuring FortiGate with FortiCNP.
upvoted 0 times
...
Laura
8 months ago
I agree, E seems like an additional security feature rather than a mandatory step. Alright, so it's A, B, and D. Let's go with that.
upvoted 0 times
Gerald
7 months ago
Agreed, enabling send logs, creating an IPS sensor and firewall policy, and creating an SSL/SSH inspection profile are the mandatory steps.
upvoted 0 times
...
Laurel
7 months ago
I think we should go with A, B, and D.
upvoted 0 times
...
...
Lindsey
8 months ago
Yeah, D and E feel like they're just trying to trip us up. I'd say the clear winners are A, C, and maybe B, though I'm a bit unsure about that one.
upvoted 0 times
...
Cary
8 months ago
Agreed, option C is a must. As for the other options, D and E, they seem a bit unnecessary for this specific integration. Two-factor authentication and SSL/SSH inspection? Nah, I don't think those are mandatory here.
upvoted 0 times
...
Willodean
8 months ago
Sounds good to me. Let's go with A, C, and B, just in case. And remember, if you get stuck, you can always call a friend or use the 50/50 lifeline.
upvoted 0 times
...
Samuel
8 months ago
Hmm, yeah, you're probably right. I guess C can be ruled out. As for E, two-factor authentication, that's an interesting one, but I don't think it's strictly mandatory for the FortiGate-FortiCNP integration.
upvoted 0 times
...
Ivory
8 months ago
You make a fair point. Maybe option B is not as crucial as the others. Let's move on to option C - creating an IPsec tunnel. That sounds like a logical step to establish a secure connection, right?
upvoted 0 times
...
Robt
8 months ago
You make a good point, but I think the IPsec tunnel might be an optional step, depending on the deployment scenario. The question specifically says 'mandatory' configuration steps, and I'm not sure if the IPsec tunnel fits that criteria.
upvoted 0 times
...
Johna
8 months ago
Hold on, what about creating an IPsec tunnel? Wouldn't that be a mandatory step for a secure connection between the FortiGate and FortiCNP?
upvoted 0 times
...
Annmarie
8 months ago
I agree, A, B, and D seem like the most obvious choices. Enabling send logs is essential for FortiCNP to receive the necessary data, and creating an IPS sensor and firewall policy is crucial for security integration. The SSL/SSH inspection profile is also needed for proper monitoring and inspection.
upvoted 0 times
Cornell
8 months ago
D) Create an SSL/SSH inspection profile
upvoted 0 times
...
Marge
8 months ago
B) Create an IPS sensor and a firewall policy
upvoted 0 times
...
Delmy
8 months ago
A) Enable send logs
upvoted 0 times
...
...
Tamesha
8 months ago
Hmm, this question seems to be testing our understanding of the mandatory configuration steps for integrating a FortiGate VM with FortiCNP. I think the key steps are A, B, and D, but let's discuss it further.
upvoted 0 times
...

Save Cancel