nse7_led-70 Exam QuestionsBrowse all questions from this exam
Go to Exam

nse7_led-70 Exam - Question 26

Refer to the exhibit.

Examine the FortiSwitch security policy shown in the exhibit.

If the security profile shown in the exhibit is assigned to all ports on a FortiSwitch device for 802.1X authentication, which statement about the switch is correct?

Show Answer
Correct Answer: C

FortiSwitch is configured to use MAC-based security mode. This means that if a device does not support 802.1X authentication, the switch will handle it based on its MAC address. Given that the Guest VLAN is enabled and set to 'onboarding', any non-802.1X device that connects will be placed in the onboarding VLAN. Therefore, the correct statement about the switch is that it will assign non-802.1X devices to the onboarding VLAN.

Discussion

2 comments
Sign in to comment
Nappel
Mar 15, 2024

Page 267 Study Guide

ArtbrutOption: C
Mar 26, 2024

p. 267 "In cases where y device does not support 802.1x you can configure the security profile to place that device in the VLAN selected as GuestVLAN" Alternatively, MAC auth bypass could be done, but it's disabled. A is wrong, we have a MACbased profile which is able to authenticate multiple devices connected to the same port. D is wrong because you would have to disable EAP passthrough to terminate EAP on FortiSwitch