ExamGecko
Login
Home / Fortinet / NSE5_FAZ-7.2 / List of questions
Ask Question

Fortinet NSE5_FAZ-7.2 Practice Test - Questions Answers

Add to Whishlist

List of questions

Question 1

Report Export Collapse

What purposes does the auto-cache setting on reports serve? (Choose two.)

To reduce report generation time
To reduce report generation time
To automatically update the hcache when new logs arrive
To automatically update the hcache when new logs arrive
To reduce the log insert lag rate
To reduce the log insert lag rate
To provide diagnostics on report generation time
To provide diagnostics on report generation time
Suggested answer: A, B
Explanation:

Reference: https://docs.fortinet.com/document/fortianalyzer/6.0.0/administrationguide/282280/enabling-autocache

asked 18/09/2024
Damien Fenderson
39 questions

Question 2

Report Export Collapse

If you upgrade your FortiAnalyzer firmware, what report elements can be affected?

Output profiles
Output profiles
Report settings
Report settings
Report scheduling
Report scheduling
Custom datasets
Custom datasets
Suggested answer: D
asked 18/09/2024
Alexey Bokov
44 questions

Question 3

Report Export Collapse

How does FortiAnalyzer retrieve specific log data from the database?

SQL FROM statement
SQL FROM statement
SQL GET statement
SQL GET statement
SQL SELECT statement
SQL SELECT statement
SQL EXTRACT statement
SQL EXTRACT statement
Suggested answer: A
Explanation:

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/137bb60e-ff37-11e8-8524-f8bc1258b856/fortianalyzer-fortigate-sql-technote-40-mr2.pdf

asked 18/09/2024
Mohammad Musa
46 questions

Question 4

Report Export Collapse

On FortiAnalyzer, what is a wildcard administrator account?

An account that permits access to members of an LDAP group
An account that permits access to members of an LDAP group
An account that allows guest access with read-only privileges
An account that allows guest access with read-only privileges
An account that requires two-factor authentication
An account that requires two-factor authentication
An account that validates against any user account on a FortiAuthenticator
An account that validates against any user account on a FortiAuthenticator
Suggested answer: A
Explanation:

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-adminaccounts

asked 18/09/2024
David Hartnett
52 questions

Question 5

Report Export Collapse

What are two of the key features of FortiAnalyzer? (Choose two.)

Centralized log repository
Centralized log repository
Cloud-based management
Cloud-based management
Reports
Reports
Virtual domains (VDOMs)
Virtual domains (VDOMs)
Suggested answer: A, C
asked 18/09/2024
Gufran Dalwai
52 questions

Question 6

Report Export Collapse

What statements are true regarding the "store and upload" log transfer option between FortiAnalyzer and FortiGate? (Choose three.)

All FortiGates can send logs to FortiAnalyzer using the store and upload option.
All FortiGates can send logs to FortiAnalyzer using the store and upload option.
Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.
Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.
Both secure communications methods (SSL and IPsec) allow the store and upload option.
Both secure communications methods (SSL and IPsec) allow the store and upload option.
Disk logging is enabled on the FortiGate through the CLI only.
Disk logging is enabled on the FortiGate through the CLI only.
Disk logging is enabled by default on the FortiGate.
Disk logging is enabled by default on the FortiGate.
Suggested answer: B, C, D
asked 18/09/2024
Haakon Schjelderup
59 questions

Question 7

Report Export Collapse

Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)

Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated.
Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated.
Must establish an IPsec tunnel ID and pre-shared key.
Must establish an IPsec tunnel ID and pre-shared key.
IPsec cannot be enabled if SSL is enabled as well.
IPsec cannot be enabled if SSL is enabled as well.
IPsec is only enabled through the CLI on FortiAnalyzer.
IPsec is only enabled through the CLI on FortiAnalyzer.
Suggested answer: B, D
Explanation:

Option B is correct because you must establish an IPsec tunnel ID and pre-shared key to secure the communication between FortiAnalyzer and FortiGate with IPsec12. The tunnel ID is a unique identifier for each tunnel and the pre-shared key is a secret passphrase that authenticates the peers.

Option D is correct because IPsec is only enabled through the CLI on FortiAnalyzer1. You cannot configure IPsec settings through the GUI on FortiAnalyzer.

asked 18/09/2024
Eduardo Lapuente
44 questions

Question 8

Report Export Collapse

Which two statements about log forwarding are true? (Choose two.)

Forwarded logs cannot be filtered to match specific criteria.
Forwarded logs cannot be filtered to match specific criteria.
Logs are forwarded in real-time only.
Logs are forwarded in real-time only.
The client retains a local copy of the logs after forwarding.
The client retains a local copy of the logs after forwarding.
You can use aggregation mode only with another FortiAnalyzer.
You can use aggregation mode only with another FortiAnalyzer.
Suggested answer: C, D
Explanation:

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/420493/modes

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/621804/logforwarding

asked 18/09/2024
Christophe RUIZ
38 questions

Question 9

Report Export Collapse

Which two methods can you use to send event notifications when an event occurs that matches a configured event handler? (Choose two.)

SMS
SMS
Email
Email
SNMP
SNMP
IM
IM
Suggested answer: B, C
Explanation:

Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/1800_Events/0200_Event_handlers/0600_Create_event_handlers.htm

Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/1800_Events/0200_Event_handlers/0600_Create_event_handlers.htm

asked 18/09/2024
Bassem Louati
36 questions

Question 10

Report Export Collapse

Consider the CLI command:

Fortinet NSE5_FAZ-7.2 image Question 10 26297 09182024190052000000

What is the purpose of the command?

To add a unique tag to each log to prove that it came from this FortiAnalyzer
To add a unique tag to each log to prove that it came from this FortiAnalyzer
To add the MD5 hash value and authentication code
To add the MD5 hash value and authentication code
To add a log file checksum
To add a log file checksum
To encrypt log communications
To encrypt log communications
Suggested answer: C
Explanation:

https://docs.fortinet.com/document/fortianalyzer/6.2.5/cli-reference/849211/global

asked 18/09/2024
Robert Andrade
54 questions
Total 137 questions
Go to page: of 14
Open VPLUS File
Convert VPLUS to PDF

Related questions

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?
On FortiAnalyzer, what is a wildcard administrator account?
Which SQL query is in the correct order to query the database in the FortiAnslyzer?
Which statement correctly describes the management extensions available on FortiAnalyzer?
What purposes does the auto-cache setting on reports serve? (Choose two.)
An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email. What could be the problem?
Which two statements are true regarding ADOM modes? (Choose two.)
Which two statements are correct regarding the export and import of playbooks? (Choose two.)
Why run the command diagnose sql status sqlplugind?
What is the recommended method of expanding disk space on a FortiAnalyzer VM?