View all questions & answers for the NSE 6 - OT Security 7.6 Architect Exam Materials exam


NSE 6 - OT Security 7.6 Architect Exam Materials-Question 15 Discussion
Comment Image Comment Image Comment Image

Refer to the exhibit. A firewall policy page is shown. To improve the security of your OT network, you have configured a Supervisor profile in the firewall policies, as shown in the exhibit. However, a supervisor is reporting that he cannot ping PLC-1. What are the two reasons? (Choose two answers)

  • A. The supervisor must first authenticate using a protocol such as HTTPS or Telnet.
  • B. The Supervisor profile is not configured in the remote server.
  • C. The firewall policy ID 8 is not enabled.
  • D. The CLI parameter auth-on-demand is set to always.
Correct Answer: A,D

Brave-Dump Clients Votes

AD 100%

Comments



Matthias Strauß 2026-05-19 00:29:08

Selected Answers: A, D


Study Guide P 89-91
When you use only active auth., if all possble policies that could match the source IP address have auth. enabled, then user will receive a login promt (assuming they use an acceptable login protocol). Thats not the case with ALL_ICMP!
And on Page 91 explains the rest with auth-on-demand always in combination.