Fortinet Exam NSE6_FAC-6.4 Topic 3 Question 17 Discussion

Actual exam question for Fortinet's NSE6_FAC-6.4 exam

Question #: 17
Topic #: 3

[All NSE6_FAC-6.4 Questions]

Which two SAML roles can Fortiauthenticator be configured as? (Choose two)

AIdendity provider

BPrincipal

CAssertion server

DService provider

Show Suggested Answer

Suggested Answer: A, D

FortiAuthenticator can be configured as a SAML identity provider (IdP) or a SAML service provider (SP). As an IdP, FortiAuthenticator authenticates users and issues SAML assertions to SPs. As an SP, FortiAuthenticator receives SAML assertions from IdPs and grants access to users based on the attributes in the assertions. Principal and assertion server are not valid SAML roles. Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4/administration-guide/372407/saml

by Galen at Mar 08, 2024, 11:00 AM

Limited Time Offer

25%

Off

Get Premium NSE6_FAC-6.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ona

8 days ago

Haha, I bet the exam creators are trying to trip us up with those other options. 'Principal' and 'assertion server' don't sound like standard SAML roles to me. Time to focus on the real possibilities.

upvoted 0 times

...

Caren

9 days ago

Okay, let's think this through. A and D seem like the obvious choices - identity provider and service provider. But what about B and C? I'm stumped on those.

upvoted 0 times

...

Vannessa

10 days ago

I'm pretty sure Fortiauthenticator can be configured as an identity provider, but I'm not sure about the other SAML roles. This question is testing our knowledge of the product's capabilities.

upvoted 0 times

...

Javier

11 days ago

Hmm, this SAML question seems straightforward, but I wonder if there's a catch. Fortiauthenticator is usually thought of as an identity provider, but could it also act as a service provider in certain scenarios?

upvoted 0 times

...