ExamGecko
Search Search Login
Home Home / Fortinet / FCP_FCT_AD-7.2

Fortinet FCP_FCT_AD-7.2 Practice Test - Questions Answers, Page 3

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)
Refer to the exhibit. An administrator has restored the modified XML configuration file to FortiClient and sees the error shown in the exhibit. Based on the XML settings shown in the exhibit, what must the administrator do to resolve the issue with the XML configuration file?
Refer to the exhibit, which shows the endpoint summary information on FortiClient EMS. What two conclusions can you make based on the Remote-Client status shown above? (Choose two.)
What does FortiClient do as a fabric agent? (Choose two.)
Refer to the exhibit, which shows the Zero Trust Tagging Rule Set configuration. Which two statements about the rule set are true? (Choose two.)
An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users Which FortiGate feature is required m addition to ZTNA?
Refer to the exhibit. Based on the FortiClient tog details shown in the exhibit, which two statements ace true? (Choose two.)
Which statement about the FortiClient enterprise management server is true?
Which statement about FortiClient enterprise management server is true?
Refer to the exhibit. Based on the CLI output from FortiGate. which statement is true?

Question 21

Report
Export
Collapse

A FortiClient EMS administrator has enabled the compliance rule for the sales department Which Fortinet device will enforce compliance with dynamic access control?

A.
FortiClient
A.
FortiClient
Answers
B.
FortiClient EMS
B.
FortiClient EMS
Answers
C.
FortiGate
C.
FortiGate
Answers
D.
FortiAnalyzer
D.
FortiAnalyzer
Answers
Suggested answer: C

Explanation:

Understanding Compliance Rules:

The compliance rule for the sales department needs to be enforced dynamically.

Enforcing Compliance:

FortiGate is responsible for enforcing compliance by integrating with FortiClient EMS to apply dynamic access control based on compliance status.

Conclusion:

The Fortinet device that will enforce compliance with dynamic access control is the FortiGate.

Compliance and enforcement documentation from FortiGate and FortiClient EMS study guides.

Question 22

Report
Export
Collapse

In a ForliSandbox integration, what does the remediation option do?

A.
Deny access to a tile when it sees no results
A.
Deny access to a tile when it sees no results
Answers
B.
Alert and notify only
B.
Alert and notify only
Answers
C.
Exclude specified files
C.
Exclude specified files
Answers
D.
Wait for FortiSandbox results before allowing files
D.
Wait for FortiSandbox results before allowing files
Answers
Suggested answer: B

Explanation:

Understanding FortiSandbox Integration:

In a FortiSandbox integration, various remediation options are available for handling suspicious files.

Evaluating Remediation Options:

The remediation option for alerting and notifying without blocking access or waiting for results is essential to understand.

Conclusion:

The correct action for the remediation option in this context is to alert and notify only.

FortiSandbox integration documentation from the study guides.

Question 23

Report
Export
Collapse

An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate What is the prerequisite to get FortiClient EMS lo connect to FortiGate successfully?

A.
Import and verify the FortiClient EMS tool CA certificate on FortiGate.
A.
Import and verify the FortiClient EMS tool CA certificate on FortiGate.
Answers
B.
Revoke and update the FortiClient client certificate on EMS.
B.
Revoke and update the FortiClient client certificate on EMS.
Answers
C.
Import and verify the FortiClient client certificate on FortiGate.
C.
Import and verify the FortiClient client certificate on FortiGate.
Answers
D.
Revoke and update the FortiClient EMS root CA.
D.
Revoke and update the FortiClient EMS root CA.
Answers
Suggested answer: A

Explanation:

Connecting FortiClient EMS to FortiGate:

The administrator needs to establish a connection between FortiClient EMS and FortiGate as a fabric connector.

Prerequisites for Connection:

A key prerequisite is the import and verification of the FortiClient EMS tool CA certificate on FortiGate to ensure a trusted connection.

Conclusion:

The correct prerequisite for a successful connection is to import and verify the FortiClient EMS tool CA certificate on FortiGate.

FortiClient EMS and FortiGate connection and certificate management documentation from the study guides.

Question 24

Report
Export
Collapse

Which security fabric component sends a notification io quarantine an endpoint after IOC detection 'n the automation process?

A.
FortiAnalyzer
A.
FortiAnalyzer
Answers
B.
FortiGate
B.
FortiGate
Answers
C.
FortiClient EMS
C.
FortiClient EMS
Answers
D.
FortiClient
D.
FortiClient
Answers
Suggested answer: C

Explanation:

Understanding the Automation Process:

In the Security Fabric, automation processes can include actions such as quarantining an endpoint after an IOC (Indicator of Compromise) detection.

Evaluating Responsibilities:

FortiClient EMS plays a crucial role in endpoint management and can send notifications to quarantine endpoints.

Conclusion:

The correct security fabric component that sends a notification to quarantine an endpoint after IOC detection is FortiClient EMS.

FortiClient EMS and automation process documentation from the study guides.

Question 25

Report
Export
Collapse

An administrator configures ZTNA configuration on the FortiGate. Which statement is true about the firewall policy?

A.
It redirects the client request to the access proxy.
A.
It redirects the client request to the access proxy.
Answers
B.
It uses the access proxy.
B.
It uses the access proxy.
Answers
C.
It defines ZTNA server.
C.
It defines ZTNA server.
Answers
D.
It only uses ZTNA tags to control access for endpoints.
D.
It only uses ZTNA tags to control access for endpoints.
Answers
Suggested answer: A

Explanation:

'The firewall policy matches and redirects client requests to the access proxy VIP' https://docs.fortinet.com/document/fortigate/7.0.0/new-features/194961/basic-ztna-configuration

Question 26

Report
Export
Collapse

Refer to the exhibit.

Based on the FortiClient tog details shown in the exhibit, which two statements ace true? (Choose two.)

A.
The filename Is Unconfirmed 899290.crdovnload.
A.
The filename Is Unconfirmed 899290.crdovnload.
Answers
B.
The file status is Quarantined
B.
The file status is Quarantined
Answers
C.
The filename is sent to FortiSandbox for further inspection.
C.
The filename is sent to FortiSandbox for further inspection.
Answers
D.
The file location is \??\D:\Users\.
D.
The file location is \??\D:\Users\.
Answers
Suggested answer: A, B

Question 27

Report
Export
Collapse

Which two are benefits of using multi-tenancy mode on FortiClient EMS? (Choose two.)

A.
Separate host servers manage each site.
A.
Separate host servers manage each site.
Answers
B.
Licenses are shared among sites
B.
Licenses are shared among sites
Answers
C.
The fabric connector must use an IP address to connect to FortiClient EMS.
C.
The fabric connector must use an IP address to connect to FortiClient EMS.
Answers
D.
It provides granular access and segmentation.
D.
It provides granular access and segmentation.
Answers
Suggested answer: C, D

Explanation:

 

Question 28

Report
Export
Collapse

An administrator installs FortiClient EMS in the enterprise.

Which component is responsible for enforcing protection and checking security posture?

A.
FortiClient EMS tags
A.
FortiClient EMS tags
Answers
B.
FortiClient vulnerability scan
B.
FortiClient vulnerability scan
Answers
C.
FortiClient
C.
FortiClient
Answers
D.
FortiClient EMS
D.
FortiClient EMS
Answers
Suggested answer: C

Explanation:

Understanding FortiClient EMS Components:

FortiClient EMS manages and configures endpoint security settings, while FortiClient installed on the endpoint enforces protection and checks security posture.

Evaluating Responsibilities:

FortiClient performs the actual enforcement of security policies and checks the security posture of the endpoint.

Conclusion:

The component responsible for enforcing protection and checking security posture is FortiClient (C).

FortiClient EMS and endpoint security documentation from the study guides.

Question 29

Report
Export
Collapse

Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which application is blocked by the application firewall?

A.
Twitter
A.
Twitter
Answers
B.
Facebook
B.
Facebook
Answers
C.
Internet Explorer
C.
Internet Explorer
Answers
D.
Firefox
D.
Firefox
Answers
Suggested answer: D

Explanation:

 

Question 30

Report
Export
Collapse

An administrator installs FortiClient on Windows Server.

What is the default behavior of real-time protection control?

A.
Real-time protection must update AV signature database
A.
Real-time protection must update AV signature database
Answers
B.
Real-time protection sends malicious files to FortiSandbox when the file is not detected locally
B.
Real-time protection sends malicious files to FortiSandbox when the file is not detected locally
Answers
C.
Real-time protection is disabled
C.
Real-time protection is disabled
Answers
D.
Real-time protection must update the signature database from FortiSandbox
D.
Real-time protection must update the signature database from FortiSandbox
Answers
Suggested answer: C

Explanation:

When FortiClient is installed on a Windows Server, the default behavior for real-time protection control is:

Real-time protection is disabled: By default, FortiClient does not enable real-time protection on server installations to avoid potential performance impacts and because servers typically have different security requirements compared to client endpoints.

Thus, real-time protection is disabled by default on Windows Server installations.

Reference

FortiClient EMS 7.2 Study Guide, Real-time Protection Section

Fortinet Documentation on FortiClient Default Settings for Server Installations

Total 55 questions
Go to page: of 6
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms