NSE4 · Question #200
NSE4 Question #200: Real Exam Question with Answer & Explanation
The correct answer is D: Administrator access. The Idle Timeout setting on a FortiGate unit specifically controls how long an administrator's GUI or CLI session can remain inactive before it is automatically terminated for security purposes.
Question
The Idle Timeout setting on a FortiGate unit applies to which of the following?
Options
- AWeb browsing
- BFTP connections
- CUser authentication
- DAdministrator access
- EWeb filtering overrides.
Explanation
The Idle Timeout setting on a FortiGate unit specifically controls how long an administrator's GUI or CLI session can remain inactive before it is automatically terminated for security purposes.
Common mistakes.
- A. Web browsing sessions are typically managed by the browser or web server timeouts, not a global 'Idle Timeout' on the FortiGate for this specific purpose.
- B. FTP connections have their own session timeouts managed by the FTP server and client, or by general session timeouts on the FortiGate for specific protocols, but not typically the global 'Idle Timeout' setting.
- C. User authentication sessions (e.g., captive portal) have their own specific timeout settings, distinct from the administrative idle timeout.
- E. Web filtering overrides are temporary permissions and do not have an 'idle timeout' in the same context as an administrative session.
Concept tested. FortiGate administrative session security
Reference. https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/468894/administrative-access
Topics
Community Discussion
No community discussion yet for this question.