Refer to the exhibits. Which show the Zero Trust Tag Monitor and the FortiClient GUI status.Remote-Client is tagged as Remote-Users on the FortiClient EMS Zero Trust Tag Monitor.What must an administrator do to show the tag on the FortiClient GUI?

Change the FortiClient system settings to enable tag visibility

Update tagging rule logic to enable tag visibility

Change the FortiClient system settings to enable tag visibility

Change the endpoint control setting to enable tag visibility

Change the user identity settings to enable tag visibility

Refer to the exhibit, which shows the output of the ZTNA traffic log on FortiGate. What can you conclude from the log message?

The remote user connection does not match the ZTNA rule configuration.

The remote user connection does not match the local-in policy.

The remote user connection does not match the ZTNA rule configuration.

The remote user connection does not match the ZTNA server configuration.

The remote user connection does not match the ZTNA firewall policy.

ZTNA Network Topology Refer to the exhibits, which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.What is the cause of this issue?

Remote-Client failed the client certificate authentication.

Remote-Client has not initiated a connection to the ZTNA access proxy.

Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.

Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.

Remote-Client failed the client certificate authentication.

Refer to the exhibits. Which shows the configuration of endpoint policies.Based on the configuration, what will happen when someone logs in with the user account student on an endpoint in the trainingAD domain?

FortiClient EMS will assign the Training policy

FortiClient EMS will assign the Sales policy

FortiClient EMS will assign the Training policy

FortiClient EMS will assign the Default policy

FortiClient EMS will assign the Training policy for on-fabric endpoints and the Sales policy for the off-fabric endpoint

An administrator deploys a FortiClient installation through the Microsoft AD group policy After installation is complete all the custom configuration is missing.What could have caused this problem?

The FortiClient package is not assigned to the group

The FortiClient exe file is included in the distribution package

The FortiClient MST file is missing from the distribution package

FortiClient does not have permission to access the distribution package.

The FortiClient package is not assigned to the group

Refer to the exhibits. Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

The administrator must enable remote HTTPS access to EMS.

The administrator must enable FQDN on EMS.

The administrator must authorize FortiGate on FortiAnalyzer.

The administrator must enable SSH access to EMS.

Refer to the exhibit. Based on the settings shown in the exhibit, which action will FortiClient take when users try to access www facebook com?

FortiClient will block access to Facebook and its subdomains.

FortiClient will allow access to Facebook.

FortiClient will block access to Facebook and its subdomains.

FortiClient will monitor only the user's web access to the Facebook website

FortiClient will prompt a warning message to want the user before they can access the Facebook website

Why does FortiGate need the root CA certificate of FortiCient EMS?

To revoke FortiClient client certificates

To sign FortiClient CSR requests

To update FortiClient client certificates

To trust certificates issued by FortiClient EMS

Refer to the exhibit, which shows FortiClient EMS deployment, profiles. When an administrator creates a deployment profile on FortiClient EMS. which statement about the deployment profile is true?

Deployment-2 will upgrade FortiClient on both the AD group and workgroup.

Deployment-1 will install FortiClient on new AO group endpoints.

Deployment-2 will install FortiClient on both the AD group and workgroup.

Deployment-1 will upgrade FortiClient only on the workgroup.

Exhibit. Based on the logs shown in the exhibit, why did FortiClient EMS tail to install FortiClient on the endpoint?

The task scheduler service is not running.

The FortiClient antivirus service is not running.

The Windows installer service is not running.

The remote registry service is not running.

The task scheduler service is not running.

Which two statements are true about ZTNA? {Choose two.)

ZTNA provides role-based access.

ZTNA provides a security posture check.

ZTNA manages access for remote users only.

ZTNA provides role-based access.

ZTNA provides a security posture check.

ZTNA manages access through the client only.

When site categories are disabled in FortiClient web filter, which feature can be used to protect the endpoint from malicious web access?

Block malicious websites on antivirus

Exhibit. Refer to the exhibits, which show the Zero Trust Tag Monitor and the FortiClient GUI status.Remote-Client is tagged as Remote-User* on the FortiClient EMS Zero Trust Tag Monitor.What must an administrator do to show the tag on the FortiClient GUI?

Change the endpoint alerts configuration to enable tag visibility.

Change the FortiClient EMS shared settings to enable tag visibility.

Change the endpoint alerts configuration to enable tag visibility.

Update tagging rule logic to enable tag visibility.

Change the FortiClient system settings to enable lag visibility.

In a ForliSandbox integration, what does the remediation option do?

Deny access to a tile when it sees no results

Wait for FortiSandbox results before allowing files

An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate What is the prerequisite to get FortiClient EMS lo connect to FortiGate successfully?

Import and verify the FortiClient EMS tool CA certificate on FortiGate.

Revoke and update the FortiClient client certificate on EMS.

Import and verify the FortiClient client certificate on FortiGate.

Revoke and update the FortiClient EMS root CA.

An administrator configures ZTNA configuration on the FortiGate. Which statement is true about the firewall policy?

It redirects the client request to the access proxy.

It only uses ZTNA tags to control access for endpoints.

Refer to the exhibit. Based on the FortiClient tog details shown in the exhibit, which two statements ace true? (Choose two.)

The filename Is Unconfirmed 899290.crdovnload.

The filename is sent to FortiSandbox for further inspection.

The file location is \??\D:\Users\.

Which two are benefits of using multi-tenancy mode on FortiClient EMS? (Choose two.)

The fabric connector must use an IP address to connect to FortiClient EMS.

It provides granular access and segmentation.

Separate host servers manage each site.

Licenses are shared among sites

The fabric connector must use an IP address to connect to FortiClient EMS.

It provides granular access and segmentation.

An administrator installs FortiClient on Windows Server.What is the default behavior of real-time protection control?

Real-time protection is disabled

Real-time protection must update AV signature database

Real-time protection sends malicious files to FortiSandbox when the file is not detected locally

Real-time protection is disabled

Real-time protection must update the signature database from FortiSandbox

Refer to the exhibit, which shows the endpoint summary information on FortiClient EMS. What two conclusions can you make based on the Remote-Client status shown above? (Choose two.)

The endpoint has been assigned the Default endpoint policy.

The endpoint is currently off-net.

The endpoint is classified as at risk.

The endpoint has been assigned the Default endpoint policy.

The endpoint is configured to support FortiSandbox.

The endpoint is currently off-net.

A new chrome book is connected in a school's network.Which component can the EMS administrator use to manage the FortiClient web filter extension installed on the Google Chromebook endpoint?

FortiClient web filter extension

Which statement about FortiClient comprehensive endpoint protection is true?

lt helps to safeguard systems from advanced security threats, such as malware.

It helps to safeguard systems from email spam

It helps to safeguard systems from data loss.

It helps to safeguard systems from DDoS.

lt helps to safeguard systems from advanced security threats, such as malware.

Refer to the exhibit. Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

Endpoints will be quarantined through EMS

Endpoints will be banned on FortiGate

An email notification will be sent for compromised endpoints

Endpoints will be quarantined through FortiSwitch

Refer to the exhibit, which shows the Zero Trust Tagging Rule Set configuration. Which two statements about the rule set are true? (Choose two.)

The endpoint must satisfy that antivirus is installed and running and Windows 10 is running.

The endpoint must satisfy that only Windows Server 2012 R2 is running.

The endpoint must satisfy that only Windows 10 is running.

The endpoint must satisfy that only AV software is installed and running.

The endpoint must satisfy that antivirus is installed and running and Windows 10 is running.

The endpoint must satisfy that only Windows Server 2012 R2 is running.

Refer to the exhibit. Based on The settings shown in The exhibit, which statement about FortiClient behaviour is Hue?

FortiClient scans infected files when the user copies files to the Resources folder.

FortiClient quarantines infected ties and reviews later, after scanning them.

FortiClient copies infected files to the Resources folder without scanning them.

FortiClient blocks and deletes infected files after scanning them.

What action does FortiClient anti-exploit detection take when it detects exploits?

Patches the compromised application process

Deletes the compromised application process

Patches the compromised application process

Blocks memory allocation to the compromised application process

Terminates the compromised application process

Fortinet FCP_FCT_AD-7.2 Practice Test 1 - Free Online Exam Prep & Questions

Question 1 / 40

An administrator must add an authentication server on FortiClient EMS in a different security zone that cannot allow a direct connection.

Which solution can provide secure access between FortiClient EMS and the Active Directory server?

Configure and deploy a FortiGate device between FortiClient EMS and the Active Directory server.

Configure Active Directory and install FortiClient EMS on the same VM.

Configure a slave FortiClient EMS on a virtual machine.

Configure an Active Directory connector between FortiClient EMS and the Active Directory server.

Comment (0)

Fortinet FCP_FCT_AD-7.2 Practice Test 1

Question

Fortinet FCP_FCT_AD-7.2 Practice Tests

Practice Tests