Refer to the exhibit.

Based on the ZTNA tag, the security posture of the remote endpoint has changed.
What will happen to endpoint active ZTNA sessions?

• A.They will be re-evaluated to match the endpoint policy.
• B.They will be re-evaluated to match the firewall policy.
• C.They will be re-evaluated to match the ZTNA policy.
• D.They will be re-evaluated to match the security policy.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibits.
The exhibits show the firewall policies and the objects used in the firewall policies.
The administrator is using the Policy Lookup feature and has entered the search criteria shown in the exhibit.

Which policy will be highlighted, based on the input criteria?

• A.Policy with ID 4.
• B.Policy with ID 5.
• C.Policies with ID 2 and 3.
• D.Policy with ID 4.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.
Refer to the FortiGuard connection debug output.

Based on the output shown in the exhibit, which two statements are correct? (Choose two.)

• A.A local FortiManager is one of the servers FortiGate communicates with.
• B.One server was contacted to retrieve the contract information.
• C.There is at least one server that lost packets consecutively.
• D.FortiGate is using default FortiGuard communication settings.

Comment: *

Name: *

Email: *

Verification: *

Which statement is correct regarding the security fabric?

• A.FortiManager is one of the required member devices.
• B.FortiGate devices must be operating in NAT mode.
• C.A minimum of two Fortinet devices is required.
• D.FortiGate Cloud cannot be used for logging purposes.

Comment: *

Name: *

Email: *

Verification: *

Which statement regarding the firewall policy authentication timeout is true?

• A.It is a hard timeout. The FortiGate removes the temporary policy for a user's source MAC address after this timer has expired.
• B.It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source MAC.
• C.It is an idle timeout. The FortiGate considers a user to be "idle" if it does not see any packets coming from the user's source IP.
• D.It is a hard timeout. The FortiGate removes the temporary policy for a user's source IP address after this timer has expired.

Comment: *

Name: *

Email: *

Verification: *