FCP – FortiGate Administrator 7.4 — Question 54

A FortiGate firewall policy is configured with active authentication however, the user cannot authenticate when accessing a website.

Which protocol must FortiGate allow even though the user cannot authenticate?

Answer options

• A. ICMP
• B. DNS
• C. DHCP
• D. LDAP

Correct answer: B

Explanation

The correct answer is B, DNS, because DNS resolution is necessary for the user to access any website, including during authentication processes. The other options, such as ICMP, DHCP, and LDAP, are not directly required for the user to resolve the website's address and authenticate their access.