Which statement about guest user groups is true?
A. Guest user group accounts are temporary.
B. Guest user group account passwords are temporary.
Guest accounts are most commonly used for which of the following purposes?
A. To provide temporary visitor access to corporate network resources
B. To provide temporary visitor access to wireless networks
Firewall policies dictate whether a user or device can (or cannot) authenticate to a network. Which statement about firewail authentication is true?
A. Firewall policies can be configured to authenticate certificate users.
B. The order of the firewall policies always determines whether a user's credentials are determined actively or passively.
Which statement about active authentication is true?
A. Active authentication is always used before passive authentication.
B. The firewall policy must allow the HTTP, HTTPS, FTP, and/or Telnet protocols in order for the user to be prompted for credentials.
Authentication timeout
Three options for behavior: - ❌-No traffic for that amount of me
- ❌ expires after that amount of time. regardless of activity
- ❌ expires if no new session is created in that amount of time
Which statements about captive portal is true?
A. Captive portal must be hosted on a FortiGate device.
B. Captive portal can exempt specific devices from authenticating.
Which statement best describes the authentication idle timeout feature on FortiGate?
A. The length of time FortiGate waits for the user to enter their authentication credentials
B. The length of time an authenticated user is allowed to remain authenticated without any packets being generated by the host device
Which command would you use to identify the IP addresses of all authenticated users?
A. diagnose firewall auth clear
B. diagnose firewall auth list
