Fortinet NSE 6 – Securing AWS with Fortinet Cloud Security 6.4
Exam series: NSE6_WCS-6.4
Number of questions: 30
Exam time: 60 minutes
Language: English
Product version: FortiOS 6.4, FortiWeb 6.4
Exam details: exam description
NSE 6 Certification
The Fortinet Network Security Specialist recognizes your comprehensive skills and ability to work with the Secure Fabric products that go beyond the firewall. We recommend this certification for network and security professionals who are involved in managing and supporting specific Fortinet security products. Visit the Fortinet NSE Certification Program page for information about certification requirements.
Fortinet NSE 6—Securing AWS With Fortinet Cloud Security 6.4 Exam
The Fortinet NSE 6—Securing AWS With Fortinet Cloud Security 6.4 exam is part of the NSE 6 Network Security Specialist program, and recognizes the successfu* candidate’s knowledge and expertise with Fortinet solutions in public cloud network environments based on AWS.
The exam tests applied knowledge of the configuration and administration of Fortinet security solutions in AWS, and includes deployment and management tasks, configuration extracts, and troubleshooting scenarios.
Audience
The Fortinet NSE 6—Securing AWS With Fortinet Cloud Security 6.4 exam is intended for network and security professionals who are responsible for the configuration and administration of an AWS public cloud security infrastructure composed of one or more Fortinet solutions.
Exam Details
Exam name Fortinet NSE 6—Securing AWS With Fortinet Cloud Security 6.4
Exam series NSE6_WCS-6.4
Time allowed 60 minutes
Exam questions 30 multiple-choice questions
Scoring Pass or fail, a score report is available from your Pearson VUE account
Language English
Exam Topics
Successfu* candidates have applied knowledge and skills in the following areas and tasks:
* Fundamentals of securing AWS
* Explain AWS basic concepts and components
* Describe traffic flow in AWS
* Fortinet solution for AWS
* Identify Fortinet products on AWS Marketplace
* Distinguish between different licenses in AWS Marketplace—PAYG and BYOL
* Explain Fortinet solutions for AWS
* Deploy Fortinet products in AWS
* Explain networking in AWS
* Configure HA using Fortinet cloud formation templates
* Configure the load balancer and autoscaling
* Configure and secure AWS cloud
* Configure FortiGate AWS SDN integration
Training Resources
The following resources are recommended for attaining the knowledge and skills that are covered on the exam. The recommended training is available as a foundation for exam preparation. In addition to training, candidates are
strongly encouraged to have hands-on experience with the exam topics and objectives.
NSE Training Institute Courses
* NSE 6 Securing AWS With Fortinet Cloud Security 6.4
Other Resources
* FortiOS—AWS Cookbook 6.4
Product version FortiGate 6.4, FortiWeb 6.3
Experience
* Familiarity with the deployment and configuration of Fortinet solutions in AWS.
Exam Sample Questions
A set of sample questions is available from the NSE Training Institute. These questions sample the exam content in question type and content scope. However, the questions do not necessarily represent al* the exam content, nor are
they intended to assess an individual’s readiness to take the certification exam.
See the NSE Training Institute for the course that includes the sample questions.
Examination Policies and Procedures
The NSE Training Institute recommends that candidates review exam policies and procedures before registering for the exam. Access important information on the Program Policies page, and find answers to common questions on the
FAQ page.
Examkingdom Fortinet NSE6_WCS-6.4 Exam pdf, Certkingdom Fortinet NSE6_WCS-6.4 Exam PDF
Best Fortinet NSE6_WCS-6.4 Certification, Fortinet NSE6_WCS-6.4 PDF Training at Certkingdom.com
QUESTION 1
An administrator sees that an excessive amount of storage space on a FortiMail device is being used up by quarantine accounts for invalid users. The FortiMail is operating in transparent mode.
Which two FortiMail features can the administrator configure to tackle this issue? (Choose two.)
A. Automatic removal of quarantine accounts
B. Recipient address verification
C. Bounce address tag verification
D. Sender address rate control
Explanation:
Answer: AD
QUESTION 2
FortiMail is configured with the protected domain example.com.
Which two envelope addresses will require an access receive rule, to relay for unauthenticated senders? (Choose two.)
A. MAIL FROM: accounts@example.com RCPT TO: sales@external.org
B. MAIL FROM: support@example.com RCPT TO: marketing@example.com
C. MAIL FROM: training@external.org RCPT TO: students@external.org
D. MAIL FROM: mis@hosted.net RCPT TO: noc@example.com
Explanation:
Answer: B,D
QUESTION 3
Which two antispam techniques query FortiGuard for rating information? (Choose two.)
A. DNSBL
B. SURBL
C. IP reputation
D. URI filter
Answer: AB
QUESTION 4
What three configuration steps are required to enable DKIM signing for outbound messages on FortiMail? (Choose three.)
A. Generate a public/private key pair in the protected domain configuration
B. Enable DKIM check in a matching session profile
C. Enable DKIM check in a matching antispam profile
D. Publish the public key as a TXT record in a public DNS server
E. Enable DKIM signing for outgoing messages in a matching session profile
Explanation:
Answer: A,B,D
QUESTION 5
Which three statements about SMTPS and SMTP over TLS are true? (Choose three.)
A. SMTP over TLS connections are entirely encrypted and initiated on port 465
B. SMTPS encrypts the identities of both the sender and receiver
C. The STARTTLS command is used to initiate SMTP over TLS
D. SMTPS encrypts only the body of the email message
E. SMTPS connections are initiated on port 465
Answer: B,C,E