Module 2

Question 1

How do you use fortiguard forensics analysis

Answer 1

You submit in the portal

Question 2

What can DEM help with?

Answer 2

Connectivity
Bandwidth
CPU
MEMORY
Hard disk
SaaS monitoring

Question 3

Three common use cases for dedicated public IP address deployments are:

Answer 3

Traffic identification and isolation
* Geolocation rules (TAC Ticket)
* Source IP anchoring (TAC Ticket)

Question 4

Can you get Add on IP licenses for Standard licensing?

Answer 4

Yes, costs extra.

Question 5

In version 24, how many IP addresses can you add per POP?

Answer 5

One, per POP.

Question 6

Describe Geolocation IP add

Answer 6

In the geolocation rules use case, the customer can request the dedicated public IP address of a POP to be
mapped to a different geolocation, while traffic still transits through its actual geolocation.

Question 7

Describe Source IP anchoring

Answer 7

Additional dedicated public IP add-on
license is required with four additional
dedicated IP addresses

Source IP anchoring policy can be used
to SNAT a specific user, group, or country
of incoming remote users

Question 8

Describe Endpoint mode

Answer 8

Uses SSL VPN
The VPN policy
on FortiSASE is configured with the required security components, such as web filter, application control, and
so on, to secure the internet traffic. Endpoint mode also supports configuring zero trust network access
(ZTNA) for compliance checks.

Question 9

Describe SWG mode

Answer 9

Explicit Proxy for HTTP/HTTPS
Uses PAC file or configures web browser.

Question 10

Does SWG Require you to download a CA certificate?

Answer 10

Yes, it is required as SWG mode intercepts SSL

Question 11

What options do you have for Remote Auth of users for FortISASE?

Answer 11

LDAP
RADIUS
SAML

Question 12

Common Name Identifier

Answer 12

is the attribute name you use to find the username.

Question 13

What is Distinguished Name

Answer 13

setting identifies the top of the tree where the users are located, which is generally
the domain controller (DC) value; however, it can be a specific container or organizational unit (OU)

Question 14

What are the three roles of SAML?

Answer 14

Principal
Identity Provider
Service Provider

Question 15

Describe SAML Principal

Answer 15

An entity that requests access to a service that
requires authentication and authorization
* Can be a user, group, or device

Question 16

What is a SAML IdP

Answer 16

Identity Provider
Creates, maintains, and manages identity information
* Responds to requests for SAML assertions made by a
service provider

Question 17

What is SAML Sp?

Answer 17

Requires service to a principal
Relies on an IdP for authentication and authorization
information

Question 18

What happens when you configure SSO

Answer 18

It overrides all other authentication method