Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE6_FNC-7.2 Topic 6 Question 11 Discussion

Actual exam question for Fortinet's NSE6_FNC-7.2 exam
Question #: 11
Topic #: 6
[All NSE6_FNC-7.2 Questions]

During an evaluation of state-based enforcement, an administrator discovers that ports that should not be under enforcement have been added to enforcement groups. In which view would the administrator be able to determine who added the ports to the groups?

Show Suggested Answer Hide Answer
Suggested Answer: B

Study Guide p. 356: Any time FortiNAC changes network access for an endpoint, the change is documented on the Port Changes view. This provides an administrator with valuable information when validating control configurations and enforcement.

by Thora at Apr 22, 2024, 09:43 AM

Limited Time Offer

25%

Off

Get Premium NSE6_FNC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Pamella
4 days ago
Okay, let's see. I'm pretty sure the Admin Auditing view would show any changes made to the enforcement configuration, so that's where I'd start looking.
upvoted 0 times
...
Ammie
8 days ago
Hmm, this one has me a bit stumped. I know Kibana is a data visualization tool, but I'm not sure how that fits into the Cloud Pak For Integration logging service. I'll have to think this through carefully.
upvoted 0 times
...
Linn
11 days ago
But is it really just about their ability? I feel like readiness and willingness are also super important, which could tilt it towards B or C.
upvoted 0 times
...
Janna
11 days ago
This question seems straightforward, I'm pretty confident I know the answer.
upvoted 0 times
...
Elvis
14 days ago
I think the Independent Practice Association sounds familiar; we went over some questions related to that in practice, but I'm not convinced it fits the description fully.
upvoted 0 times
...
Tenesha
19 days ago
I remember reading that once ZTP is in cancel mode, you're generally safe and might not need to save anything, but I'm not 100% sure.
upvoted 0 times
...
Kara
5 months ago
The Admin Auditing view? Pfft, that's too obvious. The admin probably hid the evidence in the Narnia section of the security logs.
upvoted 0 times
Emily
3 months ago
They should definitely check the Narnia section of the security logs, just in case.
upvoted 0 times
...
Bernardo
3 months ago
I heard they can track everything in the Admin Auditing view.
upvoted 0 times
...
Kerry
4 months ago
Maybe they thought no one would check the Admin Auditing view.
upvoted 0 times
...
...
Carmela
5 months ago
I'm going with B, the Admin Auditing view. Anything related to enforcement changes has to be there, right? Unless the admin was really sneaky and covered their tracks...
upvoted 0 times
Chauncey
4 months ago
Denny: Definitely, it helps to keep track of any unauthorized actions.
upvoted 0 times
...
Denny
5 months ago
User 2: Yeah, it's important to have a record of any enforcement changes made.
upvoted 0 times
...
Shoshana
5 months ago
User 1: I agree, the Admin Auditing view is the best place to check for who added the ports.
upvoted 0 times
...
...
Eun
6 months ago
Hmm, the Event Management view might be worth a look too. Who knows, maybe there's some juicy info hidden in there.
upvoted 0 times
Leonora
5 months ago
Yeah, I agree. It's important to track any changes made by administrators for security purposes.
upvoted 0 times
...
Regenia
5 months ago
I think the Admin Auditing view would be the best place to check for who added those ports.
upvoted 0 times
...
...
Moira
6 months ago
I'm not sure, but I think C) The Event Management view could also be helpful in this situation.
upvoted 0 times
...
Linwood
6 months ago
I agree, the Admin Auditing view is the way to go. It's the best place to track changes made by administrators.
upvoted 0 times
...
Glen
6 months ago
I agree with Lera, because the Admin Auditing view tracks all changes made by administrators.
upvoted 0 times
...
Kaycee
6 months ago
The Admin Auditing view seems like the obvious choice here. That's where I'd expect to find logs of administrative actions.
upvoted 0 times
Curtis
5 months ago
D) The Security Events view
upvoted 0 times
...
Robt
5 months ago
C) The Event Management view
upvoted 0 times
...
Eve
5 months ago
B) The Admin Auditing view
upvoted 0 times
...
Leonora
5 months ago
A) The Alarms view
upvoted 0 times
...
...
Lera
6 months ago
I think the answer is B) The Admin Auditing view.
upvoted 0 times
...

Save Cancel