Fortinet Exam NSE7_ZTA-7.2 Topic 4 Question 8 Discussion

Actual exam question for Fortinet's NSE7_ZTA-7.2 exam

Question #: 8
Topic #: 4

[All NSE7_ZTA-7.2 Questions]

Which statement is true about FortiClient EMS in a ZTNA deployment?

AUses endpoint information to grant or deny access to the network

BProvides network and user identity authentication services

CGenerates and installs client certificates on managed endpoints

DActs as ZTNA access proxy for managed endpoints

Show Suggested Answer

Suggested Answer: A

Based on the ZTNA logs provided, the true statement is:

A) The Remote_user ZTNA tag has matched the ZTNA rule: The log includes a user tag 'ztna_user' and a policy name 'External_Access_FAZ', which suggests that the ZTNA tag for 'Remote_User' has successfully matched the ZTNA rule defined in the policy to allow access.

The other options are not supported by the information in the log:

B) An authentication scheme is configured: The log does not provide details about an authentication scheme.

C) The external IP for ZTNA server is 10.122.0.139: The log entry indicates 'dstip=10.122.0.139' which suggests that this is the destination IP address for the traffic, not necessarily the external IP of the ZTNA server.

D) Traffic is allowed by firewall policy 1: The log entry 'policyid=1' indicates that the traffic is matched to firewall policy ID 1, but it does not explicitly state that the traffic is allowed; although the term 'action=accept' suggests that the action taken by the policy is to allow the traffic, the answer option D could be considered correct as well.

Interpretation of FortiGate ZTNA Log Files.

Analyzing Traffic Logs for Zero Trust Network Access.

by Marti at Apr 14, 2024, 03:04 AM

Limited Time Offer

25%

Off

Get Premium NSE7_ZTA-7.2 Questions as Interactive Web-Based Practice Test or PDF