Fortinet Network Security Expert 8 Written (800)

Here you have the best Fortinet NSE8 practice exam questions

  • You have 65 total questions across 13 pages (5 per page)
  • These questions were last updated on March 18, 2026
  • This site is not affiliated with or endorsed by Fortinet.
Question 1 of 65
The dashboard widget indicates that FortiGuard Web Filtering is not reachable. However, AntiVirus, IPS, and Application Control have no problems as shown in the exhibit.
Exam NSE8: Question 1 - Image 1
You contacted Fortinets customer service and discovered that your FortiGuard Web Filtering contract is still valid for several months.
What are two reasons for this problem? (Choose two.)
Answer

Suggested Answer

The suggested answer is A, B.

If Web filtering shows unreachable then we have to verify, whether web filtering enabled in security policies or not.
Web filtering enabled in a policy but the port 8888 and 53 are not selected, means the policy blocking the ports.
Reference:
http://cookbook.fortinet.com/troubleshooting-web-filtering/
Question 2 of 65
A customer is authenticating users using a FortiGate and an external LDAP server. The LDAP user, John Smith, cannot authenticate. The administrator runs the debug command diagnose debug application fnbamd 255 while John Smith attempts the authentication:
Based on the output shown in the exhibit, what is causing the problem?
Exam NSE8: Question 2 - Image 1
Answer

Suggested Answer

The suggested answer is D.

Community Votes3 votes
DSuggested
100%
Question 3 of 65
Exam NSE8: Question 3 - Image 1
The exhibit shows an explicit Web proxy configuration in a FortiGate device. The FortiGate is installed between a client with the IP address 172.16.10.4 and a
Web server using port 80 with the IP address 10.10.3.4. The client Web browser is properly sending HTTP traffic to the FortiGate Web proxy IP address
172.16.10.254.
Which two sniffer commands will capture this HTTP traffic? (Choose two.)
Answer

Suggested Answer

The suggested answer is C, D.

Sniffer should run between webproxy to webserver
And also Sniffer between client machine to web proxy connectivity as it is in explicit mode.
Reference:
http://www.maxnetwork.org/fortigate-packet-capture
Community Votes1 vote
ACMost voted
100%
Question 4 of 65
Your colleague has enabled virtual clustering to load balance traffic between the cluster units. You notice that all traffic is currently directed to a single FortiGate unit. Your colleague has applied the configuration shown in the exhibit.
Exam NSE8: Question 4 - Image 1
Which step would you perform to load balance traffic within the virtual cluster?
Answer

Suggested Answer

The suggested answer is C.

Reference:
http://docs.fortinet.com/uploaded/files/1088/fortigate-ha-50.pdf
Community Votes1 vote
CSuggested
100%
Question 5 of 65
A data center for example.com hosts several separate Web applications. Users authenticate with all of them by providing their Active Directory (AD) login credentials. You do not have access to Example, Inc.s AD server. Your solution must do the following:
- provide single sign-on (SSO) for all protected Web applications
- prevent login brute forcing
- scan FTPS connections to the Web servers for exploits
- scan Webmail for OWASP Top 10 vulnerabilities such as session cookie hijacking, XSS, and SQL injection attacks
Which solution meets these requirements?
Answer

Suggested Answer

The suggested answer is D.

FSSO agent integrate fortigate with AD then inspect bruteforce,FTPS,HTTP, and HTTPS using fortiweb and then forward all traffic to web server.
Reference:
http://cookbook.fortinet.com/providing-single-sign-using-ldap-fsso-agent-advanced-mode-expert/
Community Votes1 vote
AMost voted
100%

About the Fortinet NSE8 Certification Exam

About the Exam

The Fortinet NSE8 (Fortinet Network Security Expert 8 Written (800)) validates your knowledge and skills. Passing demonstrates proficiency and can boost your career prospects in the field.

How to Prepare

Work through all 65 practice questions across 13 pages. Focus on understanding the reasoning behind each answer rather than memorizing responses to be ready for any variation on the real exam.

Why Practice Exams?

Practice exams help you familiarize yourself with the question format, manage your time, and reduce anxiety on the test day. Our NSE8 questions are regularly updated to reflect the latest exam objectives.