nse7_led-70 Exam QuestionsBrowse all questions from this exam
Go to Exam

nse7_led-70 Exam - Question 1

Refer to the exhibit.

Examine the FortiGate user group configuration and the Windows AD LDAP group membership information shown in the exhibit.

FortiGate is configured to authenticate SSL VPN users against Windows AD using LDAP. The administrator configured the SSL VPN user group for SSL VPN users. However, the administrator noticed that both the t and student and jsmith users can connect to SSL VPN.

Which change can the administrator make on FortiGate to restrict the SSL VPN service to the student user only?

Show Answer
Correct Answer: A

In a FortiGate SSL VPN user group configuration, to restrict access to a specific LDAP group, you need to ensure that the remote group mapping matches exactly the group intended for access control. Setting the Group Name to CN=SSLVPN,CN=Users,DC=trainingAD,DC=training,DC=lab ensures that only users belonging to the SSLVPN group in the LDAP directory will be authenticated for SSL VPN access. This excludes other users who are not part of this specific group, achieving the desired restriction.

Discussion

2 comments
Sign in to comment
ArtbrutOption: A
Mar 24, 2024

Assume A

ArtbrutOption: A
Mar 27, 2024

study guide p. 466