FortiNAC Agent Types and Scan Controls

What are some tasks that FortiNAC agents can perform?

Which type of agent is installed on the host and remains to scan the computer as needed?

What is the purpose of endpoint compliance in network security?

What action does the dissolvable agent take after the host has passed the security scan?

Which of the following is NOT one of the main types of FortiNAC agents?

What should be determined as the first step when implementing endpoint compliance?

What type of information can be viewed in the zero-trust tag monitor?

What does FortiClient-EMS do with dynamic groups based on zero-trust tags?

How can you monitor FortiClient endpoint information on FortiGate?

What signifies at-risk endpoints in FortiNAC?

What information can be accessed by using the diagnose endpoint record list command?

How can you determine the reason for a failed compliance on an endpoint in FortiNAC?

What is one thing the passive agent can do?

Where can you access the passive agent rules?

What is a limitation of the mobile agent?

How often does the persistent agent communicate back to the FortiNAC server?

What is a key aspect of Mobile Device Management (MDM) integration with FortiNAC?

Which MDM solution is NOT among the supported vendors for integration with FortiNAC?

What action does the passive agent take when a user connects to the network and logs in?

Which endpoint does the persistent agent scan for compliance?

What kind of SSL certificate is required for the mobile agent?

How can you create a passive agent configuration that applies to all domain group members?

What type of agent is deployed using login scripts and launched when the user logs in to the domain?

Which agent offers scanning without end-user interaction and can be used for automatic registration?

Where is the mobile agent typically installed on?

Which agent can work within the context of FortiNAC VPN integration?

What is required if using version 3.x or higher of the FortiNAC persistent agent?

How are administrative templates used in configuring the passive agent?

The passive agent registers and scans endpoints that are joined to a domain when a domain user does what?

Which type of agents are normally deployed from within the captive portal environment during endpoint onboarding?

Where are the administrative templates installed for configuring the persistent agents when deployed by group policy?

What must be executed on Linux systems for configuring values related to persistent agents?

What must endpoint users do to disconnect from FortiClient-EMS?

What is the purpose of integrating FortiNAC with FortiClient-EMS?

How does FortiNAC handle rogue mobile devices without FortiClient installed?

What type of data does FortiClient-EMS send to FortiNAC when a registered device is detected?

What does the Endpoint Compliance Configuration field in FortiNAC allow the user to define?

In the example shown, what is the name of the policy associated with the User and/or Host Profile in FortiNAC?

How can installed application information be collected to enhance endpoint visibility in FortiNAC?

What type of agent is available for Windows, Mac OS X, and Linux operating systems in FortiNAC?

In FortiNAC, what action is taken if Jailbreak Detection is selected for an iOS device?

In FortiNAC's Scan Creation, what does the Renew IP option do?

What does the Failure remediation option in FortiNAC do when a scan fails?

Which agent type in FortiNAC is available for Android operating system?

What occurs when setting Root Detection in FortiNAC for an Android device?

When does FortiNAC perform a policy validation scan based on the Scan Settings options?

In FortiNAC's Custom Scan Creation, under what field can you select policy requirements by category for Windows hosts?

What action does 'Audit Only' remediation option take when a scan fails in FortiNAC?

When should the 'Do not Register, Remediate' option be used in FortiNAC's Agent Order of Operations?

What criteria does FortiClient check to validate the server certificate received from FortiClient-EMS?

What process does FortiClient-EMS use to dynamically group endpoints based on zero-trust tagging rules?

In the context of SSL certificates, what does FortiClient do if the EMS server certificate is invalid?

What action can be taken if endpoint users want to disconnect from FortiClient-EMS according to the configuration options?

Which component sends zero-trust tagging rules to the endpoint for validation?

What settings can be configured in Endpoint Profiles, System Settings on FortiClient-EMS to prevent users from disconnecting?

What protocol is used for the connection between FortiClient and FortiClient-EMS?

How does FortiOS utilize dynamic endpoint groups received from FortiClient-EMS?

What happens if the certificate issuer or root certificate in the chain is not from a publicly trusted CA?

What security feature can be enabled in FortiClient-EMS to prevent endpoint users from disconnecting?