NSE 6 – FortiAuthenticator 6.4 — Question 15

You are a FortiAuthenticator administrator for a large organization. Users who are configured to use FortiToken 200 for two-factor authentication can no longer authenticate. You have verified that only the users with two-factor authentication are experiencing the issue.
What can cause this issue?

Answer options

• A. FortiToken 200 license has expired.
• B. One of the FortiAuthenticator devices in the active-active cluster has failed.
• C. Time drift between FortiAuthenticator and hardware tokens.
• D. FortiAuthenticator has lost contact with the FortiToken Cloud servers.

Correct answer: C

Explanation

The correct answer is C because time drift can cause the tokens to generate codes that are not recognized by the FortiAuthenticator, leading to authentication failures. Options A and B are unlikely because they would affect all users or the system's overall functionality. Option D is also incorrect, as it would likely impact all users rather than just those using two-factor authentication.