NSE4 Question #276: Real Exam Question with Answer & Explanation

Sign in or unlock NSE4 to reveal the answer and full explanation for question #276. The question stem and answer options stay visible for context.

Submitted by obi.ng· Apr 18, 2026Firewall Policies and Authentication

Question

The following diagnostic output is displayed in the CLI: diag firewall auth list policy iD. 9, srC. 192.168.3.168, action: accept, timeout: 13427 user: forticlient_chk_only, group: flag (80020): auth timeout_ext, flag2 (40): exact group iD. 0, av group: 0 ----- 1 listed, 0 filtered ------ Based on this output, which of the following statements is correct?

Options

AFirewall policy 9 has endpoint compliance enabled but not firewall authentication.
BThe client check that is part of an SSL VPN connection attempt failed.
CThis user has been associated with a guest profile as evidenced by the group id of 0.
DAn auth-keepalive value has been enabled.

Unlock NSE4 to see the answer

You've previewed enough free NSE4 questions. Unlock NSE4 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock NSE4 - $49.99 / 30 days Sign in

Topics

#FortiGate CLI#Diagnostic Output Interpretation#Endpoint Compliance#Firewall Authentication

Full NSE4 Practice Browse All NSE4 Questions