Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 11 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 11
Topic #: 1
[All NSE7_PBC-7.2 Questions]

A customer would like to use FortiGate fabric integration With FortiCNP

When configuring a FortiGate VM to add to FortiCNP, which three mandatory configuration steps must you follow on FortiGate? (Choose three.)

Show Suggested Answer Hide Answer
Suggested Answer: A, B, D

To configure a FortiGate VM to add to FortiCNP, you need to perform three steps on FortiGate:

Enable send logs in FortiGate to allow FortiCNP to receive the IPS logs from FortiGate.

Create an SSL/SSH inspection profile on FortiGate to inspect the encrypted traffic and apply IPS protection.

Create an IPS sensor and a firewall policy on FortiGate to enable IPS detection and prevention for the traffic.


FortiCNP 22.4.a Administration Guide, page 22-24

FortiGate IPS Administration Guide, page 9-10

by Eladia at Apr 13, 2024, 08:44 PM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Laura
5 days ago
I agree, E seems like an additional security feature rather than a mandatory step. Alright, so it's A, B, and D. Let's go with that.
upvoted 0 times
...
Lindsey
5 days ago
Yeah, D and E feel like they're just trying to trip us up. I'd say the clear winners are A, C, and maybe B, though I'm a bit unsure about that one.
upvoted 0 times
...
Cary
6 days ago
Agreed, option C is a must. As for the other options, D and E, they seem a bit unnecessary for this specific integration. Two-factor authentication and SSL/SSH inspection? Nah, I don't think those are mandatory here.
upvoted 0 times
...
Willodean
7 days ago
Sounds good to me. Let's go with A, C, and B, just in case. And remember, if you get stuck, you can always call a friend or use the 50/50 lifeline.
upvoted 0 times
...
Samuel
7 days ago
Hmm, yeah, you're probably right. I guess C can be ruled out. As for E, two-factor authentication, that's an interesting one, but I don't think it's strictly mandatory for the FortiGate-FortiCNP integration.
upvoted 0 times
...
Ivory
8 days ago
You make a fair point. Maybe option B is not as crucial as the others. Let's move on to option C - creating an IPsec tunnel. That sounds like a logical step to establish a secure connection, right?
upvoted 0 times
...
Robt
8 days ago
You make a good point, but I think the IPsec tunnel might be an optional step, depending on the deployment scenario. The question specifically says 'mandatory' configuration steps, and I'm not sure if the IPsec tunnel fits that criteria.
upvoted 0 times
...
Johna
9 days ago
Hold on, what about creating an IPsec tunnel? Wouldn't that be a mandatory step for a secure connection between the FortiGate and FortiCNP?
upvoted 0 times
...
Annmarie
11 days ago
I agree, A, B, and D seem like the most obvious choices. Enabling send logs is essential for FortiCNP to receive the necessary data, and creating an IPS sensor and firewall policy is crucial for security integration. The SSL/SSH inspection profile is also needed for proper monitoring and inspection.
upvoted 0 times
...
Tamesha
13 days ago
Hmm, this question seems to be testing our understanding of the mandatory configuration steps for integrating a FortiGate VM with FortiCNP. I think the key steps are A, B, and D, but let's discuss it further.
upvoted 0 times
...

Save Cancel