nerdexam
Fortinet

FCP_FGT_AD-7.4 · Question #42

FCP_FGT_AD-7.4 Question #42: Real Exam Question with Answer & Explanation

The correct answer is B. SSL VPN login-timeout. When connected to SSL VPN over high latency connections, FortiGate can time out the client before the client can finish the negotiation process, such as DNS lookup and time to enter a token. Two new CLI commands under config vpn ssl settings have been added to address this. The f

Question

An employee needs to connect to the office through a high-latency internet connection. Which SSL VPN setting should the administrator adjust to prevent SSL VPN negotiation failure?

Options

  • ASSL VPN idle-timeout
  • BSSL VPN login-timeout
  • CSSL VPN dtls-hello-timeout
  • DSSL VPN session-ttl

Explanation

When connected to SSL VPN over high latency connections, FortiGate can time out the client before the client can finish the negotiation process, such as DNS lookup and time to enter a token. Two new CLI commands under config vpn ssl settings have been added to address this. The first command allows you to set up the login timeout, replacing the previous hard timeout value. The second command allows you to set up the maximum DTLS hello timeout for SSL VPN

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full FCP_FGT_AD-7.4 Practice