11115513
Description
Quiz by Marcos Avila, updated more than 1 year ago
|
Created by Marcos Avila
over 6 years ago
|
|
Question 1
Question
Which of the following statements are true regarding tunnel mode SSL VPN? (Choose two.)
Answer
-
You must be logged into web- -only mode SSL VPN to activate .tunnel mode.
-
You need an SSL VPN client (FortiClient) to connect to tunnel mode SSL VPN.
-
Tunnel mode SSL VPN is configured between two FortiGate devices.
-
FortiGate will dynamically assign an IP address to the SSL VPN network adapter on the host PC.
Question 2
Question
Which of the following statements are true regarding SSL VPN web-only mode? (Choose two.)
Answer
-
It cannot be used to connect to RDP servers.
-
It is possible to access the internal network resources from the SSL VPN portal.
-
It cannot be used to connect to SSH servers.
-
It supports a limited number of protocols.
Question 3
Question
Which of the following statements is true regarding client integrity checking in SSL VPN?
Answer
-
It detects the Windows client security applications running in the SSL VPN client's PCs.
-
It validates the SSL VPN user credentials on the remote authentication server.
-
It verifies which SSL VPN portal must be presented to each SSL VPN user.
-
It verifies that the latest SSL VPN client is installed in the client's PC.
Question 4
Question
View the exhibit. Which statement is true regarding Quick Connection?
Answer
-
It enables tunnel mode SSL VPN.
-
It allows you to connect to resources, based on supported protocols.
-
It enables split tunneling.
-
It allows you to create user bookmarks.
Question 5
Question
View the exhibit. Which statement is true regarding Restrict Access in the SSL-VPN Settings?
Answer
-
SSL VPN users will have access to only the REMOTE_ETH1 subnet.
-
Only users within the REMOTE_ETH1 subnet range will have access to the SSL VPN web portal login page.
-
FortiGate will assign an IP address to the SSL VPN network adaptor from the REMOTE_ETH1 subnet.
-
It enables client integrity check for the SSL VPN users in the REMOTE_ETH1 subnet.
Question 6
Question
Which statement is true about split tunneling in SSL VPN?
Answer
-
It is supported in web-only mode.
-
It can be enabled by the SSL VPN user,after connecting to the O SSL VPN.
-
If enabled, Internet traffic uses the local gateway of the connecting host.
-
If disabled, SSL VPN users must authenticate using FortiToken.
Question 7
Question
What is the purpose of ssl.root in SSL VPN?
Answer
-
It is the name of the Virtual network adapter required in each user's PC for the tunnel mode SSL VPN.
-
It is the firewall address object that contains the IP addresses assigned to SSL VPN users.
-
It is configured as the listening interface under SSL-VPN Settings to provide an SSL VPN login portal.
-
It is the name of a virtual interface in the root VDOM for SSL VPN traffic.
Question 8
Question
Which of the following authentication methods can be used for SSL VPN authentication? (Choose two.)
Answer
-
Local password authentication
-
LDAP
-
FortiTeIemetry
-
FSSO
-
Extended Authentication (XAuth)
Question 9
Question
View the exhibit. Which statement is true regarding the configuration on the SSL—VPN Monitor page?
Answer
-
FortiGate assigns the IP address 10.150.150.1 to the Student SSL-VPN user.
-
FortiGate assigns the IP address 10.200.3.1 to the StudentZ SSL-VPN user.
-
FortiGate assigns IP address 10.212.134.200 to the Student SSL-VPN user.
-
The Student SSL-VPN user is disconnected from the SSL-VPN and doesn’t show any IP addresses under Active Connections.
Want to create your own Quizzes for free with GoConqr? Learn more.