New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE7_ZTA-7.2 Topic 5 Question 12 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam
Question #: 12
Topic #: 5
[All NSE7_ZTA-7.2 Questions]

Exhibit.

Based on the ZTNA logs provided, which statement is true?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the ZTNA logs provided, the true statement is:

A) The Remote_user ZTNA tag has matched the ZTNA rule: The log includes a user tag 'ztna_user' and a policy name 'External_Access_FAZ', which suggests that the ZTNA tag for 'Remote_User' has successfully matched the ZTNA rule defined in the policy to allow access.

The other options are not supported by the information in the log:

B) An authentication scheme is configured: The log does not provide details about an authentication scheme.

C) The external IP for ZTNA server is 10.122.0.139: The log entry indicates 'dstip=10.122.0.139' which suggests that this is the destination IP address for the traffic, not necessarily the external IP of the ZTNA server.

D) Traffic is allowed by firewall policy 1: The log entry 'policyid=1' indicates that the traffic is matched to firewall policy ID 1, but it does not explicitly state that the traffic is allowed; although the term 'action=accept' suggests that the action taken by the policy is to allow the traffic, the answer option D could be considered correct as well.


Interpretation of FortiGate ZTNA Log Files.

Analyzing Traffic Logs for Zero Trust Network Access.

Contribute your Thoughts:

Natalie
6 months ago
B is the answer. An authentication scheme is clearly configured based on the information provided.
upvoted 0 times
Jonelle
6 months ago
It's clear from the ZTNA logs that an authentication scheme is configured. B is the answer.
upvoted 0 times
...
King
6 months ago
Yes, I agree. The logs show that an authentication scheme is in place.
upvoted 0 times
...
Chandra
6 months ago
I think B is the correct answer. An authentication scheme is definitely configured.
upvoted 0 times
...
...
Phuong
7 months ago
Haha, I bet the ZTNA team had a field day trying to figure this one out. Good thing they have those logs to work with!
upvoted 0 times
Paz
6 months ago
B) An authentication scheme is configured
upvoted 0 times
...
Pete
6 months ago
A) The Remote_user ZTNA tag has matched the ZTNA rule
upvoted 0 times
...
Broderick
6 months ago
B) An authentication scheme is configured
upvoted 0 times
...
Mauricio
6 months ago
A) The Remote_user ZTNA tag has matched the ZTNA rule
upvoted 0 times
...
...
Cyndy
7 months ago
I'm pretty sure the answer is D. Traffic is allowed by firewall policy 1. That's what the logs seem to indicate.
upvoted 0 times
Lawanda
6 months ago
No, I disagree. It looks like D is the correct answer. Traffic is allowed by firewall policy 1.
upvoted 0 times
...
Edelmira
6 months ago
I think it might be A. The Remote_user ZTNA tag has matched the ZTNA rule.
upvoted 0 times
...
...
Kathrine
7 months ago
The correct answer is A. The Remote_user ZTNA tag has matched the ZTNA rule, as shown in the logs.
upvoted 0 times
Eric
6 months ago
No, that's not mentioned in the logs. It must be A.
upvoted 0 times
...
Aja
6 months ago
C) The external IP for ZTNA server is 10 122 0 139.
upvoted 0 times
...
Hana
6 months ago
I think that's also mentioned in the logs.
upvoted 0 times
...
Sharen
6 months ago
B) An authentication scheme is configured
upvoted 0 times
...
Josphine
6 months ago
That's incorrect. The logs don't mention anything about firewall policy 1.
upvoted 0 times
...
Rodolfo
6 months ago
D) Traffic is allowed by firewall policy 1
upvoted 0 times
...
Tamekia
6 months ago
Yes, I agree. The logs clearly show that.
upvoted 0 times
...
Erasmo
6 months ago
B) An authentication scheme is configured
upvoted 0 times
...
Ronnie
6 months ago
A) The Remote_user ZTNA tag has matched the ZTNA rule
upvoted 0 times
...
Izetta
7 months ago
A) The Remote_user ZTNA tag has matched the ZTNA rule
upvoted 0 times
...
...

Save Cancel