NSE 7 – OT Security 7.2 — Question 25

Which statement is correct about processing matched rogue devices by FortiNAC?

Answer options

• A. FortiNAC cannot revalidate matched devices.
• B. FortiNAC remembers the matching rule of the rogue device.
• C. FortiNAC disables matching rule of previously-profiled rogue devices.
• D. FortiNAC matches the rogue device with only one device profiling rule.

Correct answer: B

Explanation

The correct answer is B because FortiNAC indeed retains the matching rule for rogue devices, allowing it to remember the conditions under which a device was identified as rogue. Option A is incorrect as FortiNAC can revalidate matched devices. Option C is misleading because FortiNAC does not disable matching rules for previously profiled rogue devices. Option D is wrong since FortiNAC can match rogue devices with multiple profiling rules, not just one.