New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Fortinet NSE6_FWB-6.4 Fortinet NSE 6 - FortiWeb 6.4 Exam Practice Test

Demo: 8 questions
Total 56 questions

Fortinet NSE 6 - FortiWeb 6.4 Questions and Answers

Question 1

When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)

Options:

A.

Defines Log file format

B.

Defines communication protocol

C.

Defines Database Schema

D.

Defines Log storage location

Question 2

Under which circumstances does FortiWeb use its own certificates? (Choose Two)

Options:

A.

Secondary HTTPS connection to server where FortiWeb acts as a client

B.

HTTPS to clients

C.

HTTPS access to GUI

D.

HTTPS to FortiGate

Question 3

Which of the following is true about Local User Accounts?

Options:

A.

Must be assigned regardless of any other authentication

B.

Can be used for Single Sign On

C.

Can be used for site publishing

D.

Best suited for large environments with many users

Question 4

How does FortiWeb protect against defacement attacks?

Options:

A.

It keeps a complete backup of all files and the database.

B.

It keeps hashes of files and periodically compares them to the server.

C.

It keeps full copies of all files and directories.

D.

It keeps a live duplicate of the database.

Question 5

Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

Options:

A.

Sensitive info masking

B.

Poison Cookie detection

C.

Session Management

D.

Brute Force blocking

Question 6

Which implementation is best suited for a deployment that must meet compliance criteria?

Options:

A.

SSL Inspection with FortiWeb in Transparency mode

B.

SSL Offloading with FortiWeb in reverse proxy mode

C.

SSL Inspection with FrotiWeb in Reverse Proxy mode

D.

SSL Offloading with FortiWeb in Transparency Mode

Question 7

What role does FortiWeb play in ensuring PCI DSS compliance?

Options:

A.

It provides the ability to securely process cash transactions.

B.

It provides the required SQL server protection.

C.

It provides the WAF required by PCI.

D.

It provides credit card processing capabilities.

Question 8

Refer to the exhibit.

FortiADC is applying SNAT to all inbound traffic going to the servers. When an attack occurs, FortiWeb blocks traffic based on the 192.0.2.1 source IP address, which belongs to FortiADC. The setup is breaking all connectivity and genuine clients are not able to access the servers.

What must the administrator do to avoid this problem? (Choose two.)

Options:

A.

Enable the Use X-Forwarded-For setting on FortiWeb.

B.

No Special configuration is required; connectivity will be re-established after the set timeout.

C.

Place FortiWeb in front of FortiADC.

D.

Enable the Add X-Forwarded-For setting on FortiWeb.

Demo: 8 questions
Total 56 questions