Which statements are true regarding local user authentication? (Choose two.)

Local user authentication allows for user credentials to be managed directly on the device, which includes options such as enabling two-factor authentication. This feature enhances security by requiring not only a username and password but also a second form of verification, which can be set for individual users. Implementing two-factor authentication on a per-user basis provides flexibility and heightened security for specific users who may need additional protection based on their access level or role within the organization.

Local authentication typically involves managing user accounts directly on the Fortinet device, meaning local accounts are not limited strictly to administration but can also include other user types with different access roles. Therefore, suggesting that local users are solely for administration accounts overlooks the broader functionality of local user authentication systems. Additionally, user accounts are not typically created on a remote server when using local authentication; rather, these accounts exist on the device itself. While usernames and passwords can indeed be stored locally, stating this as a choice generally does not reflect the deeper functionalities available, particularly in user management and security enhancements like two-factor authentication.