Kopieren und bearbeiten

Firewall Authentication

Beschreibung

NSE4 6.0 NSE4 6.0 Quiz am Firewall Authentication, erstellt von Marcos Avila am 16/08/2018.
Marcos Avila
Quiz von Marcos Avila, aktualisiert more than 1 year ago
Marcos Avila
Erstellt von Marcos Avila vor fast 6 Jahre
84
1
0

Zusammenfassung der Ressource

Frage 1

Frage
Fortigate methods of firewall authentication (Select 3)
Antworten
  • Local password authentication
  • server-based password authentication
  • two-factor authentication
  • LDAP
  • Token
  • TACACS+

Frage 2

Frage
Remote authentication server (Select 4)
Antworten
  • POP3
  • RADIUS
  • LDAP
  • TACACS+
  • Token Server
  • FortiAuthenticator

Frage 3

Frage
POP3 is the only server that requires an email address as the login credential.
Antworten
  • True
  • False

Frage 4

Frage
Tokens use a specific algorithm to generate an OTP. The algorithm consists of:
Antworten
  • The time: obtained from an accurate internal clock. A seed: a unique, randomly-generated number that does not change in time.
  • A seed: obtained from an accurate internal clock. The time : a unique, randomly-generated number that does not change in time.

Frage 5

Frage
Authentication methods and active authentication types :
Antworten
  • Active Passive
  • Local Remote

Frage 6

Frage
[blank_start]Active[blank_end] : User receives a login prompt Must manually enter credentials to authenticate POP3, LDAP, RADIUS, Local and TACACS+ [blank_start]Passive[blank_end] : User does not receive a login prompt Credentials are determined automatically -Method varies depending on type of authentication used FSSO, RSSO, and NTLM
Antworten
  • Active
  • Passive

Frage 7

Frage
Port used for LDAP:
Antworten
  • TCP Port 389
  • TCP Port 398
  • TCP Port 983

Frage 8

Frage
?
Image:
Captura (binary/octet-stream)
Antworten
  • Example Directory Tree
  • Example Organizational Domain Tree
  • Example LDAP hierarchy

Frage 9

Frage
Testing LDAP query:
Antworten
  • diagnose test authserver ldap <server> <username> <password>
  • diagnose authserver <serverip> ldap <username> <password>

Frage 10

Frage
When FortiGate uses RADIUS server for remote authentication, which statement about RADIUS is true?
Antworten
  • a. FortiGate must query remote RADIUS server using the distinguished name (dn).
  • b. RADIUS group memberships are provided by vendor specific attributes (VSAs) configured on the RADIUS server.

Frage 11

Frage
Which of the following is a valid reply from a RADIUS server to an ACCESS-REQUEST packet from FortiGate?
Antworten
  • a. ACCESS-PENDING
  • b. ACCESS-REJECT

Frage 12

Frage
A remote LDAP user is trying to authenticate with a user name and password. How does FortiGate verify the login credentials?
Antworten
  • a. FortiGate queries its own database for user credentials.
  • b. FortiGate sends the user entered credentials to the remote server for verification.

Frage 13

Frage
Which statement about guest user groups is true?
Antworten
  • a. Guest user group accounts are temporary.
  • b. Guest user group account passwords are temporary.

Frage 14

Frage
Which statement about active authentication is true?
Antworten
  • a. Active authentication is always used before passive authentication.
  • b. The firewall policy must allow the HTTP, HTTPS, FTP, and/or Telnet protocols in order for the user to be prompted for credentials.

Frage 15

Frage
[blank_start]ACCESS—ACCEPT[blank_end], which means that the user credentials are ok [blank_start]ACCESS—REJECT[blank_end], which means that the credentials are wrong [blank_start]ACCESS—CHALLENGE[blank_end], which means that the server is requesting a secondary password ID, token, or certificate. This is typically the reply from the server when using two-factor authentication.
Antworten
  • ACCESS—ACCEPT
  • ACCESS—REJECT
  • ACCESS—CHALLENGE

Frage 16

Frage
[blank_start]The Common Name identifier[blank_end] setting is the attribute name used to find the user name. Some schemas allow you to use the attribute uid. Active Directory most commonly uses sAMAccountName or cn, but can use others as well. [blank_start]The Distinguished Name[blank_end] setting identifies the top of the tree where the users are located, which is generally the dc value; however, it can be a specific container or ou. You must use the correct X.500 or LDAP format. [blank_start]The Bind Type[blank_end] setting depends on the security settings of the LDAP server. The setting Regular (to specify a regular bind) is required if you are searching across multiple domains and require the credentials of a user that is authorized to perform LDAP queries (for example, an LDAP administrator).
Antworten
  • The Common Name identifier
  • The Distinguished Name
  • The Bind Type
Zusammenfassung anzeigen Zusammenfassung ausblenden

Möchten Sie mit GoConqr kostenlos Ihre eigenen Quiz erstellen? eigenen Mehr erfahren.

ähnlicher Inhalt

must, had to, mustn't oder don't need to
escobar.annelize
Säure-Basen- Theorie
elham_riefaie
Stimmungen in Englisch lernen
Michelle Eichinger
IKA-Theoriefragen Serie 18 (15 Fragen)
IKA ON ICT GmbH
Nathan der Weise Quiz
Laura Overhoff
GPSY SOPS
Simon Wirsching
ESTER
yannickopaetz
Systemwissenschaften 1 Teil Füllsack
Gustav Glanz
MEKO
Josie Wolfram
Parasitologie Quiz
Peter Christian Ponn
Vetie Reprospaß2
Tropsi B
Bibliothek durchsuchen