View all questions & answers for the NSE 6 - OT Security 7.2 Architect Exam Materials exam


Question 32 Discussion

An OT supervisor has configured LDAP and FSSO for authentication. The goal is that all users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication. What should the OT supervisor do to achieve this on FortiGate? (Choose one answer)

  • A. Under config user settings, configure set auth-on-demand implicit.
  • B. Configure a firewall policy with LDAP users and place it at the top of the list of firewall policies.
  • C. Configure a firewall policy with FSSO users and place it at the top of the list of firewall policies.
  • D. Enable two-factor authentication with FSSO
Correct Answer: C

Brave-Dump Clients Votes

A 100%

Comments



mahmoud mostafa 2025-11-10 20:04:48

Selected Answers: A


beside verifying the ldap user and sso users each on separate policies, admin must ensure the default policy matching criateria by setting

A. Under config user settings, configure set auth-on-demand implicit.