Weekend Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

examout.co

A client is trying to start a session from a page that would normally be accessible only after the client has logged in.

When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

A.

Display an access policy message, then allow the client to continue

B.

Redirect the client to the login page

C.

Allow the page access, but log the violation

D.

Prompt the client to authenticate

E.

Reply with a 403 Forbidden HTTP error

Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

A.

Traffic that passes between port5 and port6 will be inspected.

B.

Traffic will be interrupted between port3 and port4.

C.

All traffic will be interrupted.

D.

Traffic will pass between port5 and port6 uninspected.

Which of the following is true about Local User Accounts?

A.

Must be assigned regardless of any other authentication

B.

Can be used for Single Sign On

C.

Can be used for site publishing

D.

Best suited for large environments with many users

A client is trying to start a session from a page that should normally be accessible only after they have logged in.

When a start page rule detects the invalid session access, what can FortiWeb do? (Choose three.)

A.

Reply with a “403 Forbidden” HTTP error

B.

Allow the page access, but log the violation

C.

Automatically redirect the client to the login page

D.

Display an access policy message, then allow the client to continue, redirecting them to their requested page

E.

Prompt the client to authenticate

Which two statements about the anti-defacement feature on FortiWeb are true? (Choose two.)

A.

Anti-defacement can redirect users to a backup web server, if it detects a change.

B.

Anti-defacement downloads a copy of your website to RAM, in order to restore a clean image, if it detects defacement.

C.

FortiWeb will only check to see if there are changes on the web server; it will not download the whole file each time.

D.

Anti-defacement does not make a backup copy of your databases.

When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

A.

If you are a small business or home office

B.

If you are an enterprise whose employees use only mobile devices

C.

If you are an enterprise whose resources do not need security

D.

If you are an enterprise whose computers all trust your active directory or other CA server

What capability can FortiWeb add to your Web App that your Web App may or may not already have?

A.

Automatic backup and recovery

B.

High Availability

C.

HTTP/HTML Form Authentication

D.

SSL Inspection

Under what circumstances would you want to use the temporary uncompress feature of FortiWeb?

A.

In the case of compression being done on the FortiWeb, to inspect the content of the compressed file

B.

In the case of the file being a .MP3 music file

C.

In the case of compression being done on the web server, to inspect the content of the compressed file.

D.

In the case of the file being an .MP4 video

You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.

Which is true about the solution?

A.

Static or policy-based routes are not required.

B.

To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app’s traffic among all members of the server farm.

C.

You must put the single web server into a server pool in order to use it with HTTP content routing.

D.

The server policy applies the same protection profile to all its protected web apps.

What can an administrator do if a client has been incorrectly period blocked?

A.

Nothing, it is not possible to override a period block.

B.

Manually release the ID address from the temporary blacklist.

C.

Force a new IP address to the client.

D.

Disconnect the client from the network.