Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 11 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 11
Topic #: 1
[All NSE7_PBC-7.2 Questions]

A customer would like to use FortiGate fabric integration With FortiCNP

When configuring a FortiGate VM to add to FortiCNP, which three mandatory configuration steps must you follow on FortiGate? (Choose three.)

Show Suggested Answer Hide Answer
Suggested Answer: A, B, D

To configure a FortiGate VM to add to FortiCNP, you need to perform three steps on FortiGate:

Enable send logs in FortiGate to allow FortiCNP to receive the IPS logs from FortiGate.

Create an SSL/SSH inspection profile on FortiGate to inspect the encrypted traffic and apply IPS protection.

Create an IPS sensor and a firewall policy on FortiGate to enable IPS detection and prevention for the traffic.


FortiCNP 22.4.a Administration Guide, page 22-24

FortiGate IPS Administration Guide, page 9-10

by Eladia at Apr 13, 2024, 08:44 PM

Limited Time Offer

25%

Off

Get Premium NSE7_PBC-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Laura
10 days ago
I agree, E seems like an additional security feature rather than a mandatory step. Alright, so it's A, B, and D. Let's go with that.
upvoted 0 times
...
Lindsey
11 days ago
Yeah, D and E feel like they're just trying to trip us up. I'd say the clear winners are A, C, and maybe B, though I'm a bit unsure about that one.
upvoted 0 times
...
Cary
12 days ago
Agreed, option C is a must. As for the other options, D and E, they seem a bit unnecessary for this specific integration. Two-factor authentication and SSL/SSH inspection? Nah, I don't think those are mandatory here.
upvoted 0 times
...
Willodean
13 days ago
Sounds good to me. Let's go with A, C, and B, just in case. And remember, if you get stuck, you can always call a friend or use the 50/50 lifeline.
upvoted 0 times
...
Samuel
13 days ago
Hmm, yeah, you're probably right. I guess C can be ruled out. As for E, two-factor authentication, that's an interesting one, but I don't think it's strictly mandatory for the FortiGate-FortiCNP integration.
upvoted 0 times
...
Ivory
14 days ago
You make a fair point. Maybe option B is not as crucial as the others. Let's move on to option C - creating an IPsec tunnel. That sounds like a logical step to establish a secure connection, right?
upvoted 0 times
...
Robt
14 days ago
You make a good point, but I think the IPsec tunnel might be an optional step, depending on the deployment scenario. The question specifically says 'mandatory' configuration steps, and I'm not sure if the IPsec tunnel fits that criteria.
upvoted 0 times
...
Johna
15 days ago
Hold on, what about creating an IPsec tunnel? Wouldn't that be a mandatory step for a secure connection between the FortiGate and FortiCNP?
upvoted 0 times
...
Annmarie
16 days ago
I agree, A, B, and D seem like the most obvious choices. Enabling send logs is essential for FortiCNP to receive the necessary data, and creating an IPS sensor and firewall policy is crucial for security integration. The SSL/SSH inspection profile is also needed for proper monitoring and inspection.
upvoted 0 times
...
Tamesha
18 days ago
Hmm, this question seems to be testing our understanding of the mandatory configuration steps for integrating a FortiGate VM with FortiCNP. I think the key steps are A, B, and D, but let's discuss it further.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77