ExamTopics Logo
Mail Us[email protected]
Menu
Fortinet Discussions
exam questions

Exam NSE7_LED-7.0 All Questions

View all questions & answers for the NSE7_LED-7.0 exam
Go to Exam

Exam NSE7_LED-7.0 topic 1 question 6 discussion

Actual exam question from Fortinet's NSE7_LED-7.0
Question #: 6
Topic #: 1
[All NSE7_LED-7.0 Questions]

Refer to the exhibit.

Examine the IPsec VPN phase 1 configuration shown in the exhibit.
An administrator wants to use certificate-based authentication for an IPsec VPN user.
Which three configuration changes must you make on FortiGate to perform certificate-based authentication for the IPsec VPN user? (Choose three.)

  • A. Create a PKI user for the IPsec VPN user, and then configure the IPsec VPN tunnel to accept the PKI user as peer certificate.
  • B. In the Authentication section of the IPsec VPN tunnel, in the Method drop-down list, select Signature, and then select the certificate that FortiGate will use for IPsec VPN.
  • C. In the IKE section of the IPsec VPN tunnel, in the Mode field, select Main (ID protection).
  • D. Import the CA that signed the user certificate.
  • E. Enable XAUTH on the IPsec VPN tunnel.
Show Suggested Answer Hide Answer
Suggested Answer: ABD 🗳️
by Wallsee at Feb. 14, 2024, 8:39 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tonifan
1 week, 2 days ago
Selected Answer: ABD
abd are correct. XAUTH is spoken only in pag 46 about CHAP
upvoted 1 times
...
TheUsD
4 months, 1 week ago
Selected Answer: ABD
ABD p. 79 study guide
upvoted 1 times
...
Artbrut
1 year ago
Selected Answer: ABD
p. 79 study guide
upvoted 2 times
...
aandreou020
1 year, 1 month ago
Sorry ABD
upvoted 1 times
...
aandreou020
1 year, 1 month ago
ADE are the correct answers!! For sure you need to create PKI User
upvoted 1 times
...
Wallsee
1 year, 1 month ago
Selected Answer: BDE
Option A is false because creating a PKI user for the IPsec VPN user is not required, as the user certificate can be verified by the CA certificate.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago