nse7_led-70 Exam QuestionsBrowse all questions from this exam
Go to Exam

nse7_led-70 Exam - Question 33

Refer to the exhibit.

Examine the FortiGate RSSO configuration shown in the exhibit.

FortiGate is configured to receive RADIUS accounting messages on port3 to authenticate RSSO users. The users are located behind port3, and the internet link is connected to port1. FortiGate is processing incoming RADIUS accounting messages successfully, and RSSO users are getting associated with the RSSO Group user group. However, all the users are able to access the internet, and the administrator wants to restrict internet access to RSSO users only.

Which configuration change should the administrator make to fix the problem?

Show Answer
Correct Answer: B

To restrict internet access to only RSSO users, the administrator should add the RSSO Group to the firewall policy. This ensures that the firewall policy specifically identifies and applies to RSSO users, thereby allowing them to access the internet while restricting others. Without this specific inclusion, the firewall policy cannot differentiate between RSSO users and other users, leading to unrestricted internet access for all.

Discussion

1 comment
Sign in to comment
ArtbrutOption: B
Mar 26, 2024

study guide p. 129