nerdexam
Fortinet

NSE4_FGT_AD-7.6 · Question #107

NSE4_FGT_AD-7.6 Question #107: Real Exam Question with Answer & Explanation

The correct answer is B. Pre-shared key and certificate signature as authentication methods D. Extended authentication (XAuth) to request the remote peer to provide a username and password. Authentication-wise, both versions support PSK and certificate signature. Although only IKEv1 supports XAuth, IKEv2 supports EAP, which is equivalent to XAuth.

Question

Which two features of IPsec IKEv1 authentication are supported by FortiGate? (Choose two.)

Options

  • AExtended authentication (XAuth) for faster authentication because fewer packets are exchanged
  • BPre-shared key and certificate signature as authentication methods
  • CNo certificate is required on the remote peer when you set the certificate signature as the authentication method
  • DExtended authentication (XAuth) to request the remote peer to provide a username and password

Explanation

Authentication-wise, both versions support PSK and certificate signature. Although only IKEv1 supports XAuth, IKEv2 supports EAP, which is equivalent to XAuth.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full NSE4_FGT_AD-7.6 Practice