Fortinet Exam NSE6_FWB-6.4 Topic 8 Question 50 Discussion

Actual exam question for Fortinet's NSE6_FWB-6.4 exam

Question #: 50
Topic #: 8

A client is trying to start a session from a page that would normally be accessible only after the client has logged in.

When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

ADisplay an access policy message, then allow the client to continue

BRedirect the client to the login page

CAllow the page access, but log the violation

DPrompt the client to authenticate

EReply with a 403 Forbidden HTTP error

Show Suggested Answer

Suggested Answer: A

by Virgina at Oct 21, 2024, 05:03 PM

Limited Time Offer

25%

Off

Get Premium NSE6_FWB-6.4 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Cory

14 hours ago

Haha, C is definitely not the right answer. Allowing the page access and just logging the violation? That's like giving a thief a free pass and just making a note of it. FortiWeb needs to take stronger action!

upvoted 0 times

...

Veronika

5 days ago

Yes, that's correct. FortiWeb can also prompt the client to authenticate as one of the options.

upvoted 0 times

...

Tyisha

7 days ago

I believe FortiWeb can also redirect the client to the login page if there's an invalid session access.

upvoted 0 times

...

Veronika

7 days ago

I think FortiWeb can display an access policy message and allow the client to continue.

upvoted 0 times

...

Lavelle

7 days ago

I'm not sure about A. Allowing the client to continue after displaying an access policy message doesn't seem like the right approach for an unauthorized access attempt.

upvoted 0 times

...

Sherman

9 days ago

I think B, D, and E are the correct options. Redirecting the client to the login page, prompting for authentication, and returning a 403 Forbidden error all seem like appropriate responses to an invalid session access attempt.

upvoted 0 times

...