Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 0d 6h 37m 27s Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Fortinet Exam NSE7_ZTA-7.2 Topic 2 Question 15 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam
Question #: 15
Topic #: 2
[All NSE7_ZTA-7.2 Questions]

Which statement is true about disabled hosts on FortiNAC?

Show Suggested Answer Hide Answer
Suggested Answer: A

In the scenario where FortiNAC has alarm mappings configured for MDM (Mobile Device Management) compliance failure and FortiClient EMS (Endpoint Management System) is integrated as an MDM connector, the typical response when an endpoint is quarantined by FortiClient EMS is to isolate the host in the registration VLAN. This action is consistent with FortiNAC's approach to network access control, focusing on ensuring network security and compliance. By moving the non-compliant or quarantined host to a registration VLAN, FortiNAC effectively segregates it from the rest of the network, mitigating potential risks while allowing for further investigation or remediation steps. Reference: FortiNAC documentation, MDM Compliance and Response Actions.


by Albert at Jun 30, 2024, 11:46 AM

Limited Time Offer

25%

Off

Get Premium NSE7_ZTA-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Brittani
2 months ago
Oooh, the authentication VLAN, that's a nice one! But I think Patti's got the right idea - quarantining those disabled hosts is the way to go.
upvoted 0 times
Adaline
24 days ago
True, but placing them in the dead end VLAN could also prevent any potential threats.
upvoted 0 times
...
Cherrie
26 days ago
I see your point, but marking them as unregistered rogue devices could also be effective.
upvoted 0 times
...
Gearldine
1 months ago
But wouldn't it be better to reauthenticate them in the authentication VLAN?
upvoted 0 times
...
Stephaine
1 months ago
I agree, quarantining disabled hosts is important for security.
upvoted 0 times
...
...
Kate
2 months ago
Haha, I bet the IT team has a field day with all the 'unregistered rogue devices' on the network. Option C is a bit too much, though.
upvoted 0 times
...
Adell
2 months ago
I'm not sure, but I think disabled hosts are marked as unregistered rogue devices, so the answer might be C).
upvoted 0 times
...
Tashia
2 months ago
I disagree, I believe the disabled hosts are placed in the dead end VLAN, so the answer should be D).
upvoted 0 times
...
Julio
2 months ago
I was initially leaning towards option D, but after reading the explanation, option A makes more sense. Quarantining the disabled hosts is a common network security practice.
upvoted 0 times
Laura
1 months ago
Option D) They are placed in the dead end VLAN
upvoted 0 times
...
Mary
2 months ago
Option A) They are quarantined and placed in the remediation VLAN
upvoted 0 times
...
...
Glenna
2 months ago
I think the correct answer is A) They are quarantined and placed in the remediation VLAN.
upvoted 0 times
...
Patti
3 months ago
Option A seems to be the correct answer. Disabled hosts on FortiNAC are typically quarantined and placed in the remediation VLAN for further investigation and remediation.
upvoted 0 times
King
21 days ago
D) They are placed in the dead end VLAN
upvoted 0 times
...
Monroe
22 days ago
C) They are marked as unregistered rogue devices
upvoted 0 times
...
Paulene
26 days ago
B) They are placed in the authentication VLAN to reauthenticate
upvoted 0 times
...
Teresita
30 days ago
A) They are quarantined and placed in the remediation VLAN
upvoted 0 times
...
...

Save Cancel
a