Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam NSE6_FNC-7.2 Topic 6 Question 11 Discussion

Actual exam question for Fortinet's NSE6_FNC-7.2 exam
Question #: 11
Topic #: 6
[All NSE6_FNC-7.2 Questions]

During an evaluation of state-based enforcement, an administrator discovers that ports that should not be under enforcement have been added to enforcement groups. In which view would the administrator be able to determine who added the ports to the groups?

Show Suggested Answer Hide Answer
Suggested Answer: B

Study Guide p. 356: Any time FortiNAC changes network access for an endpoint, the change is documented on the Port Changes view. This provides an administrator with valuable information when validating control configurations and enforcement.

by Thora at Apr 22, 2024, 08:43 AM

Limited Time Offer

25%

Off

Get Premium NSE6_FNC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Kara
1 months ago
The Admin Auditing view? Pfft, that's too obvious. The admin probably hid the evidence in the Narnia section of the security logs.
upvoted 0 times
Kerry
17 days ago
Maybe they thought no one would check the Admin Auditing view.
upvoted 0 times
...
...
Carmela
2 months ago
I'm going with B, the Admin Auditing view. Anything related to enforcement changes has to be there, right? Unless the admin was really sneaky and covered their tracks...
upvoted 0 times
Chauncey
7 days ago
Denny: Definitely, it helps to keep track of any unauthorized actions.
upvoted 0 times
...
Denny
28 days ago
User 2: Yeah, it's important to have a record of any enforcement changes made.
upvoted 0 times
...
Shoshana
1 months ago
User 1: I agree, the Admin Auditing view is the best place to check for who added the ports.
upvoted 0 times
...
...
Eun
2 months ago
Hmm, the Event Management view might be worth a look too. Who knows, maybe there's some juicy info hidden in there.
upvoted 0 times
Leonora
1 months ago
Yeah, I agree. It's important to track any changes made by administrators for security purposes.
upvoted 0 times
...
Regenia
2 months ago
I think the Admin Auditing view would be the best place to check for who added those ports.
upvoted 0 times
...
...
Moira
2 months ago
I'm not sure, but I think C) The Event Management view could also be helpful in this situation.
upvoted 0 times
...
Linwood
2 months ago
I agree, the Admin Auditing view is the way to go. It's the best place to track changes made by administrators.
upvoted 0 times
...
Glen
2 months ago
I agree with Lera, because the Admin Auditing view tracks all changes made by administrators.
upvoted 0 times
...
Kaycee
2 months ago
The Admin Auditing view seems like the obvious choice here. That's where I'd expect to find logs of administrative actions.
upvoted 0 times
Curtis
1 months ago
D) The Security Events view
upvoted 0 times
...
Robt
1 months ago
C) The Event Management view
upvoted 0 times
...
Eve
2 months ago
B) The Admin Auditing view
upvoted 0 times
...
Leonora
2 months ago
A) The Alarms view
upvoted 0 times
...
...
Lera
2 months ago
I think the answer is B) The Admin Auditing view.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77