Which two statements about IPsec authentication on FortiGate are correct? (Choose two.)

Which two statements about IPsec authentication on FortiGate are correct? (Choose two.)
A . For a stronger authentication, you can also enable extended authentication (XAuth) to request the remote peer to provide a username and password
B . FortiGate supports pre-shared key and signature as authentication methods.
C . Enabling XAuth results in a faster authentication because fewer packets are exchanged.
D . A certificate is not required on the remote peer when you set the signature as the authentication method.

Answer: A,B

Explanation:

Reference: https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/913287/ipsec-vpn-authenticating-aremote-fortigate-peer-with-a-pre-shared-key

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments