FCP - FortiGate 7.4 Administrator > FSSO > Flashcards

FSSO Flashcards

(21 cards)

Study These Flashcards
1
Q

Which mode is recommended for FSSO deployments?

A

DC agent mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which naming conventions does the FSSO collector agent use to access the Windows AD in standard access mode?

A
  • Windows convention-NetBios
  • Domain\groups
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which FSSO mode requires more FortiGate system resources (CPU and RAM)?

A

Agentless polling mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are two servers that can be used with FSSO?

A
  • AD
  • Novell eDirectory
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are two polling modes used in FSSO?

A
  • Collector agent-based
  • Agentless
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are some things the collector agent is responsible for?

A
  • Group verification
  • Workstation checks
  • Updates of login records on FortiGate
  • Send security group and OU information to FortiGate
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the most scalable agent mode in FSSO?

A

DC Agent Mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What does the collector agent receive from the DC and forward to FortiGate?

A
  • User name
  • Host name
  • IP address
  • User group(s)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are three methods for collector agent-based polling mode?

A
  • WMI
  • WinSecLog
  • NetAPI
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the recommended collector agent-based polling mode?

A

WMI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is a drawback of using NetAPI as a polling mode?

A

It is faster, but can miss login events if DC has a heavy system load

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is a drawback of using WinSecLog as a polling mode?

A

It is the slowest mode, but it does see all login events

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How does the collector agent get user login events?

A

Polls the DC frequently

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are some cons of using agentless polling mode?

A
  • More CPU and RAM required by FortiGate
  • Fewer available features
  • FortiGate doesn’t poll workstation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Is DC agent mode or polling mode more complex?

A
  • DC agent mode
  • Multiple installations required (one per DC)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What are some pre-requisites that need to be properly configured on FortiGate so FSSO can work properly?

Study These Flashcards
A
  • DNS server must be able to resolve all workstation names
  • Open TCP ports 445 and 139 so the collector agent can poll workstations
17
Q

What does FortiGate use to query AD in agentless polling mode?

18
Q

Where would you configure LDAP to use with agentless polling mode?

Study These Flashcards
A

Security Fabric > External Connectors

19
Q

Where can you install a FSSO Agent?

Study These Flashcards
A

Fortinet support website

20
Q

What would you configure for a network service account when configuring FSSO, to avoid overwriting event logs?

Study These Flashcards
A

Ignored User List

21
Q

What’s the minimum bandwidth required for each domain controller for FSSO to function properly?

FCP - FortiGate 7.4 Administrator
flashcards
Decks in class (15)
# Cards
Brainscape helps you reach your goals faster, through stronger study habits.
© 2026 Bold Learning Solutions. Terms and Conditions