(Page 88 Study Guide) 'FortiPresence provides data and analytics based on demographic segmentation and visitor movement between areas'

According to the web search results, FortiPresence location map functionality provides real-time insight into user movements. It uses the location data from the Fortinet access points to detect each visitor's smartphone Wi-Fi signal and track their location and behavior within the site. It also provides data visualization in a customizable format, such as heat maps and animated flows, to show the visitor traffic and movement patterns. This geographical data analysis can help improve visitor experiences and business outcomes. Reference:Location Analytics | FortiPresence 22.4.0 - Fortinet Documentation,FortiPresence Data Sheet

According to the web search results, FortiPresence supports social networks authentication and short message service authentication as public authentication services for guest Wi-Fi access. Social networks authentication allows visitors to log in using their existing social media accounts, such as Facebook, Twitter, LinkedIn, Google, and Instagram. Short message service authentication allows visitors to receive a one-time password via SMS to their mobile phone number. These authentication methods are convenient and secure for visitors and provide valuable data for businesses. Software security token authentication and hardware security token authentication are not supported by FortiPresence as public authentication services for guest Wi-Fi access. Reference:Configuring Captive Portal | FortiPresence 1.2.0,Configuring Captive Portal | FortiPresence 22.4.0

Security profiles are a feature that allows FortiAP devices to apply various security functions to the wireless traffic, such as antivirus, web filter, application control, intrusion prevention, and botnet scanning. Security profiles can be enabled on both tunnel-mode and bridge-mode SSIDs, and can be applied either through the wireless controller configuration or through firewall policies on the FortiGate device. Security profiles can also inspect encrypted wireless traffic, as long as the FortiAP device has access to the encryption keys.

Security profiles on FortiAP devices can use FortiGate subscription services to inspect the traffic, such as FortiGuard Antivirus, FortiGuard Web Filter, FortiGuard Application Control, and FortiGuard IPS. This means that the FortiAP device can leverage the latest threat intelligence and updates from Fortinet to protect the wireless network from malicious or unwanted content.

Therefore, the correct answer is D. Security profiles on FortiAP devices can use FortiGate subscription to inspect the traffic.

FortiAP-S and FortiAP-U bridge mode security profiles

Configuring security | FortiAP / FortiWiFi 6.4.2

Security profiles - Fortinet Document Library

According to Fortinet training: 'When using DARRP, the AP selects the best channel available to use based on the scan results of BSSID/receive signal strength (RSSI) to AC' and 'To set the running time for DARRP optimization, use the following CLI command within the wireless controller setting: set darrp-optimize {integer}. Note that DARRP doesn't do continuous spectrum analysis...'

FortiPlanner is a wireless network planning and deployment tool that helps to design and optimize wireless networks based on various parameters, such as floor plans, AP models, coverage areas, and client density. FortiPlanner uses a predictive model in wireless design projects, which means that it estimates the wireless coverage and performance based on mathematical calculations and simulations, without requiring any physical measurements or site surveys. Reference:FortiOS 6.4.0 Handbook - Wireless Controller, page 5; [FortiPlanner User Guide], page 9.