Rogue Devices and Network Security Quiz

Play an AI-generated podcast conversation about this lesson

What does FortiNAC display a rogue device as on the GUI?

A laptop image with a question mark on the screen (correct)
A smartphone image with a question mark on the screen
A server image with a question mark on the screen
A desktop computer image with a question mark on the screen

How are rogue devices often referred to?

Known and trusted endpoints
Secure and classified endpoints
Unknown or untrusted endpoints (correct)
Identified and authorized endpoints

What is the default logical network used to isolate rogue hosts at the point of connection when enforcement is enabled?

Authentication
Registration (correct)
Authorization
Validation

What is a foundation of visibility created from the information that FortiNAC gathers from endpoints?

Endpoint Classification (C) Signup and view all the answers

What tool is used to classify connected devices by using administratively created rules?

Device Profiling Tool (C) Signup and view all the answers

What elements are included in the collection of endpoints?

IP-addresses, physical addresses, vendor names, statuses (C) Signup and view all the answers

What is the method used by the device profiling tool to identify the type of device?

OUI, IP-address range, and network traffic (B) Signup and view all the answers

What is enforced by the Forced Registration port group?

Host state (A) Signup and view all the answers

What does a rogue device represent in FortiNAC?

An unknown physical address on the network (A) Signup and view all the answers

What is the method used to isolate rogue hosts at the point of connection?

Enforcement through the Registration logical network (C) Signup and view all the answers

What is the purpose of the device profiling tool?

To identify the type of connected devices (B) Signup and view all the answers

What is the role of the logical network called Registration?

Isolating rogue hosts at the point of connection (C) Signup and view all the answers

What is used to identify devices as they connect to the network?

Vendor OUI, IP address, and port (A) Signup and view all the answers

How does FortiNAC determine if a device is a match for the selected device type?

By evaluating the gathered information and comparing it to a pre-set list in the database (B) Signup and view all the answers

What are endpoints classified as after they have been evaluated and considered trusted?

Registered hosts (D) Signup and view all the answers

What is the purpose of device profiling rules?

To evaluate and classify rogue devices (C) Signup and view all the answers

How does FortiNAC apply the rule-defined classification settings?

If all selected methods result in a pass result (D) Signup and view all the answers

What method does the 'Valve Control System' rule use for evaluation?

TCP (A) Signup and view all the answers

Which components are used to evaluate and classify unknown, untrusted devices?

Profiling rules comprising classification settings and methods (C) Signup and view all the answers

What is the purpose of evaluating a device against each rule until a fail, pass, or cannot evaluate result is reached?

To determine the device's classification status (D) Signup and view all the answers

What is the purpose of entering user-defined values in device profiling?

To allow for detailed device-specific customizations (B) Signup and view all the answers

What does the 'Epson Robotics' rule use for evaluation?

Vendor OUI, IP Range and Network Traffic (B) Signup and view all the answers

What is the primary method used by the 'HVAC' rule for evaluation?

TCP (C) Signup and view all the answers

What is the first step in classifying an industrial device according to the text?

Verifying the device OUI (D) Signup and view all the answers