NGFW-ENGINEER · Question #113
NGFW-ENGINEER Question #113: Real Exam Question with Answer & Explanation
Sign in or unlock NGFW-ENGINEER to reveal the answer and full explanation for question #113. The question stem and answer options stay visible for context.
Question
An organization uses Cloud Identity Engine (CIE) to gather user information from its on-premises Active Directory (AD) for employees and a separate Azure AD for external partners. Due to compliance regulations, the firewalls protecting the internal network must not have any identity information about external partners. Conversely, firewalls in the partner-facing DMZ should only be aware of partner identities. Which CIE feature is designed to solve this data partitioning requirement?
Options
- APanorama templates, which can be used to push different User-ID agent configurations to each
- BSegments, which can be configured to create distinct, filter-based views of users and groups that
- CMultiple tenants, where a separate CIE tenant is required for each user directory to maintain
- DDirectory sync filtering, which is used at the source to prevent specific OUs from being imported
Unlock NGFW-ENGINEER to see the answer
You've previewed enough free NGFW-ENGINEER questions. Unlock NGFW-ENGINEER for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.