FortinetFortinet
NSE4 · Question #170
NSE4 Question #170: Real Exam Question with Answer & Explanation
The correct answer is A: Firewall. Valid authentication user group types on a FortiGate unit include 'Firewall' groups for policy application and 'Directory Service' groups for integrating users and groups from external directories.
Submitted by kev92· Apr 18, 2026Firewall Policies and Authentication
Question
Which of the following are valid authentication user group types on a FortiGate unit? (Select all that apply.)
Options
- AFirewall
- BDirectory Service
- CLocal
- DLDAP
- EPKI
Explanation
Valid authentication user group types on a FortiGate unit include 'Firewall' groups for policy application and 'Directory Service' groups for integrating users and groups from external directories.
Common mistakes.
- C. 'Local' refers to an authentication user type, defining users directly on the FortiGate, not a user group type.
- D. 'LDAP' refers to an external server type or an authentication method, not a user group type on the FortiGate itself; groups imported from LDAP are categorized as 'Directory Service' groups.
- E. 'PKI' (Public Key Infrastructure) refers to a method of authentication using certificates, not a distinct user group type on the FortiGate.
Concept tested. FortiGate user group types
Topics
#User Groups#Authentication#FortiGate Configuration
Community Discussion
No community discussion yet for this question.