Which of the following statements are true regarding tunnel mode SSL VPN? (Choose two.)
You must be logged into web- -only mode SSL VPN to activate .tunnel mode.
You need an SSL VPN client (FortiClient) to connect to tunnel mode SSL VPN.
Tunnel mode SSL VPN is configured between two FortiGate devices.
FortiGate will dynamically assign an IP address to the SSL VPN network adapter on the host PC.
Which of the following statements are true regarding SSL VPN web-only mode? (Choose two.)
It cannot be used to connect to RDP servers.
It is possible to access the internal network resources from the SSL VPN portal.
It cannot be used to connect to SSH servers.
It supports a limited number of protocols.
Which of the following statements is true regarding client integrity checking in SSL VPN?
It detects the Windows client security applications running in the SSL VPN client's PCs.
It validates the SSL VPN user credentials on the remote authentication server.
It verifies which SSL VPN portal must be presented to each SSL VPN user.
It verifies that the latest SSL VPN client is installed in the client's PC.
View the exhibit. Which statement is true regarding Quick Connection?
It enables tunnel mode SSL VPN.
It allows you to connect to resources, based on supported protocols.
It enables split tunneling.
It allows you to create user bookmarks.
View the exhibit. Which statement is true regarding Restrict Access in the SSL-VPN Settings?
SSL VPN users will have access to only the REMOTE_ETH1 subnet.
Only users within the REMOTE_ETH1 subnet range will have access to the SSL VPN web portal login page.
FortiGate will assign an IP address to the SSL VPN network adaptor from the REMOTE_ETH1 subnet.
It enables client integrity check for the SSL VPN users in the REMOTE_ETH1 subnet.
Which statement is true about split tunneling in SSL VPN?
It is supported in web-only mode.
It can be enabled by the SSL VPN user,after connecting to the O SSL VPN.
If enabled, Internet traffic uses the local gateway of the connecting host.
If disabled, SSL VPN users must authenticate using FortiToken.
What is the purpose of ssl.root in SSL VPN?
It is the name of the Virtual network adapter required in each user's PC for the tunnel mode SSL VPN.
It is the firewall address object that contains the IP addresses assigned to SSL VPN users.
It is configured as the listening interface under SSL-VPN Settings to provide an SSL VPN login portal.
It is the name of a virtual interface in the root VDOM for SSL VPN traffic.
Which of the following authentication methods can be used for SSL VPN authentication? (Choose two.)
Local password authentication
LDAP
FortiTeIemetry
FSSO
Extended Authentication (XAuth)
View the exhibit. Which statement is true regarding the configuration on the SSL—VPN Monitor page?
FortiGate assigns the IP address 10.150.150.1 to the Student SSL-VPN user.
FortiGate assigns the IP address 10.200.3.1 to the StudentZ SSL-VPN user.
FortiGate assigns IP address 10.212.134.200 to the Student SSL-VPN user.
The Student SSL-VPN user is disconnected from the SSL-VPN and doesn’t show any IP addresses under Active Connections.