EMT Practice Test

1. Question Content...


Question List

Question1: Which three of the following can be used as SSO sources? (Choose three)

Question2: Which method is the most secure way of delivering FortiToken data once the token has been seeded?

Question3: Why would you configure an OCSP responder URL in an end-entity certificate?

Question4: Which network configuration is required when deploying FortiAuthenticator for portal services?

Question5: An administrator wants to keep local CA cryptographic keys stored in a central location.
Which FortiAuthenticator feature would provide this functionality?

Question6: An administrator is integrating FortiAuthenticator with an existing RADIUS server with the intent of eventually replacing the RADIUS server with FortiAuthenticator.
How can FortiAuthenticator help facilitate this process?

Question7: Which EAP method is known as the outer authentication method?

Question8: Which two types of digital certificates can you create in Fortiauthenticator? (Choose two)

Question9: How can a SAML metada file be used?

Question10: When you are setting up two FortiAuthenticator devices in active-passive HA, which HA role must you select on the master FortiAuthenticator?

Question11: You want to monitor FortiAuthenticator system information and receive FortiAuthenticator traps through SNMP.
Which two configurations must be performed after enabling SNMP access on the FortiAuthenticator interface? (Choose two)

Question12: Which behaviors exist for certificate revocation lists (CRLs) on FortiAuthenticator? (Choose two)

Question13: Which statement about the assignment of permissions for sponsor and administrator accounts is true?

Question14: A device or user identity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis.
In this case, which user idendity discovery method can Fortiauthenticator use?

Question15: When generating a TOTP for two-factor authentication, what two pieces of information are used by the algorithm to generate the TOTP?

Question16: At a minimum, which two configurations are required to enable guest portal services on FortiAuthenticator? (Choose two)

Question17: A system administrator wants to integrate FortiAuthenticator with an existing identity management system with the goal of authenticating and deauthenticating users into FSSO.
What feature does FortiAuthenticator offer for this type of integration?

Question18: An administrator has an active directory (AD) server integrated with FortiAuthenticator. They want members of only specific AD groups to participate in FSSO with their corporate FortiGate firewalls.
How does the administrator accomplish this goal?

Question19: Which method is the most secure way of delivering FortiToken data once the token has been seeded?

Question20: What are three key features of FortiAuthenticator? (Choose three)

Question21: A digital certificate, also known as an X.509 certificate, contains which two pieces of information? (Choose two.)

Question22: You are an administrator for a large enterprise and you want to delegate the creation and management of guest users to a group of sponsors.
How would you associate the guest accounts with individual sponsors?