FCP – FortiGate Administrator 7.4 — Question 84

Which two features of IPsec IKEv1 authentication are supported by FortiGate? (Choose two.)

Answer options

• A. Pre-shared key and certificate signature as authentication methods
• B. Extended authentication (XAuth) to request the remote peer to provide a username and password
• C. Extended authentication (XAuth) for faster authentication because fewer packets are exchanged
• D. No certificate is required on the remote peer when you set the certificate signature as the authentication method

Correct answer: A, B

Explanation

The correct answer includes A and B because FortiGate supports both pre-shared keys and certificate signatures for authentication, as well as XAuth for username and password requests. Options C and D are incorrect; C describes a feature that is not primarily focused on authentication methods, and D is incorrect as a certificate is typically required for the remote peer when using certificate signatures.