An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users.
Which FortiGate feature is required in addition to ZTNA?
An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users.
Which FortiGate feature is required in addition to ZTNA?
To add user authentication to the ZTNA access for remote or off-fabric users on a FortiGate device, Fortinet Single Sign-On (FSSO) is required. FSSO allows FortiGate to identify users and their group memberships, enabling it to apply security policies and access control based on user identity, which is essential in a Zero Trust Network Access framework.
Study Guide P. 258
FortiClient EMS 7.0 Study Guide 236 To enable ZTNA on the GUI, you must enable the feature on FortiGate System > Feature Visibility, and then enable Zero Trust Network Access. You must also enable Explicit Proxy feature on the FortiGate System > Feature Visibility.
D, you must use Explicit Proxy to authenticate.
C. FortiGate FSSO (Fortinet Single Sign-On) In the context of adding user authentication to ZTNA (Zero Trust Network Access) for remote or off-fabric users on a FortiGate device, Fortinet Single Sign-On (FSSO) is the feature that would typically be required in addition to ZTNA. FSSO is a method used by FortiGate to seamlessly identify users and their group memberships, enabling the application of security policies and access control based on user identity. This is particularly important in a Zero Trust framework, where authentication and identity verification are crucial for securing access.