What are two reasons why time synchronization between FortiGate and its managed FortiSwitch is critical in switch management? (Choose two answers)

A. FortiSwitch does not retain its time after a reboot, which gets reset after each reboot.
B. FortiSwitch will not be able to become an NTP server for downstream devices.
C. FortiSwitch cannot complete the DTLS handshake used in the CAPWAP tunnel.
D. FortiSwitch will not allow other FortiSwitch devices in the chain be discovered by FortiGate.

Correct Answer: A,C

Brave-Dump Clients Votes

AC 100%

Comments

javaughn Bryan 2025-10-02 23:52:37

Selected Answers: A, C

Time synchronization is critical in switch management. If the time on FortiGate and FortiSwitch is not synchronized, FortiSwitch can't complete the DTLS handshake used in CAPWAP, which prevents the switch from connecting to FortiGate. Another reason to have a working setup for time synchronization is because FortiSwitch doesn't retain its time after a reboot. When FortiSwitch is rebooted, the time on the switch is reset to the Unix epoch time (midnight of January 1, 1970, UTC).
PAGE: 413 & 21

FortiGate acts as the DHCP, DNS, and NTP server for the switch. FortiSwitch uses DHCP to get an IP address from the same subnet as the FortiLink interface. In addition, FortiGate is configured to respond to DNS and NTP requests received at the FortiLink interface by default. The use of NTP is very important because the time on FortiGate and FortiSwitch must be in sync. Otherwise, the CAPWAP DTLS tunnel won't be established and therefore the switch won't come online.
PAGE: 21