Fortinet FCP_FCT_AD-7.4 Exam - Topic 3 Question 11 Discussion

Actual exam question for Fortinet's FCP_FCT_AD-7.4 exam

Question #: 11
Topic #: 3

Refer to the exhibits.

Which shows the configuration of endpoint policies.

Based on the configuration, what will happen when someone logs in with the user account student on an endpoint in the trainingAD domain?

AFortiClient EMS will assign the Sales policy

BFortiClient EMS will assign the Training policy

CFortiClient EMS will assign the Default policy

DFortiClient EMS will assign the Training policy for on-fabric endpoints and the Sales policy for the off-fabric endpoint

Show Suggested Answer

Suggested Answer: B

Based on the configuration shown in the exhibits:

There are three endpoint policies configured: Training, Sales, and Default.

The 'Training' policy is assigned to the 'trainingAD.training.lab' group.

The 'Sales' policy is assigned to 'All Groups' and 'trainingAD.training.lab/student.'

The 'Default' policy has no specific groups assigned.

When someone logs in with the user account 'student' on an endpoint in the 'trainingAD' domain:

The 'Training' policy is specifically assigned to the 'trainingAD.training.lab' group.

The 'Sales' policy includes 'trainingAD.training.lab/student' but not the general 'trainingAD.training.lab' group.

The system will prioritize the most specific match for the group.

Therefore, FortiClient EMS will assign the 'Training' policy to the 'student' account logging into the 'trainingAD' domain as it matches the group 'trainingAD.training.lab' directly.

Reference

FortiClient EMS 7.2 Study Guide, Endpoint Policy Configuration Section

FortiClient EMS Documentation on Group Policy Assignment and Matching

by Johnathon at May 28, 2026, 09:26 AM

Limited Time Offer

25%

Off

Get Premium FCP_FCT_AD-7.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!