ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FAZ-7.2

Fortinet NSE5_FAZ-7.2 Practice Test - Questions Answers

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which SQL query is in the correct order to query the database in the FortiAnslyzer?
Which two statements are true regarding ADOM modes? (Choose two.)
What purposes does the auto-cache setting on reports serve? (Choose two.)
Why run the command diagnose sql status sqlplugind?
Which statement correctly describes the management extensions available on FortiAnalyzer?
An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email. What could be the problem?
What is the recommended method of expanding disk space on a FortiAnalyzer VM?
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?
Which two statements are correct regarding the export and import of playbooks? (Choose two.)
Which two elements are contained in a system backup created on FortiAnalyzer? (Choose two.)

Question 1

Report
Export
Collapse

What purposes does the auto-cache setting on reports serve? (Choose two.)

A.
To reduce report generation time
A.
To reduce report generation time
Answers
B.
To automatically update the hcache when new logs arrive
B.
To automatically update the hcache when new logs arrive
Answers
C.
To reduce the log insert lag rate
C.
To reduce the log insert lag rate
Answers
D.
To provide diagnostics on report generation time
D.
To provide diagnostics on report generation time
Answers
Suggested answer: A, B

Explanation:

Reference: https://docs.fortinet.com/document/fortianalyzer/6.0.0/administrationguide/282280/enabling-autocache

Question 2

Report
Export
Collapse

If you upgrade your FortiAnalyzer firmware, what report elements can be affected?

A.
Output profiles
A.
Output profiles
Answers
B.
Report settings
B.
Report settings
Answers
C.
Report scheduling
C.
Report scheduling
Answers
D.
Custom datasets
D.
Custom datasets
Answers
Suggested answer: D

Question 3

Report
Export
Collapse

How does FortiAnalyzer retrieve specific log data from the database?

A.
SQL FROM statement
A.
SQL FROM statement
Answers
B.
SQL GET statement
B.
SQL GET statement
Answers
C.
SQL SELECT statement
C.
SQL SELECT statement
Answers
D.
SQL EXTRACT statement
D.
SQL EXTRACT statement
Answers
Suggested answer: A

Explanation:

https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/137bb60e-ff37-11e8-8524-f8bc1258b856/fortianalyzer-fortigate-sql-technote-40-mr2.pdf

Question 4

Report
Export
Collapse

On FortiAnalyzer, what is a wildcard administrator account?

A.
An account that permits access to members of an LDAP group
A.
An account that permits access to members of an LDAP group
Answers
B.
An account that allows guest access with read-only privileges
B.
An account that allows guest access with read-only privileges
Answers
C.
An account that requires two-factor authentication
C.
An account that requires two-factor authentication
Answers
D.
An account that validates against any user account on a FortiAuthenticator
D.
An account that validates against any user account on a FortiAuthenticator
Answers
Suggested answer: A

Explanation:

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-adminaccounts

Question 5

Report
Export
Collapse

What are two of the key features of FortiAnalyzer? (Choose two.)

A.
Centralized log repository
A.
Centralized log repository
Answers
B.
Cloud-based management
B.
Cloud-based management
Answers
C.
Reports
C.
Reports
Answers
D.
Virtual domains (VDOMs)
D.
Virtual domains (VDOMs)
Answers
Suggested answer: A, C

Question 6

Report
Export
Collapse

What statements are true regarding the "store and upload" log transfer option between FortiAnalyzer and FortiGate? (Choose three.)

A.
All FortiGates can send logs to FortiAnalyzer using the store and upload option.
A.
All FortiGates can send logs to FortiAnalyzer using the store and upload option.
Answers
B.
Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.
B.
Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.
Answers
C.
Both secure communications methods (SSL and IPsec) allow the store and upload option.
C.
Both secure communications methods (SSL and IPsec) allow the store and upload option.
Answers
D.
Disk logging is enabled on the FortiGate through the CLI only.
D.
Disk logging is enabled on the FortiGate through the CLI only.
Answers
E.
Disk logging is enabled by default on the FortiGate.
E.
Disk logging is enabled by default on the FortiGate.
Answers
Suggested answer: B, C, D

Question 7

Report
Export
Collapse

Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)

A.
Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated.
A.
Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated.
Answers
B.
Must establish an IPsec tunnel ID and pre-shared key.
B.
Must establish an IPsec tunnel ID and pre-shared key.
Answers
C.
IPsec cannot be enabled if SSL is enabled as well.
C.
IPsec cannot be enabled if SSL is enabled as well.
Answers
D.
IPsec is only enabled through the CLI on FortiAnalyzer.
D.
IPsec is only enabled through the CLI on FortiAnalyzer.
Answers
Suggested answer: B, D

Explanation:

Option B is correct because you must establish an IPsec tunnel ID and pre-shared key to secure the communication between FortiAnalyzer and FortiGate with IPsec12. The tunnel ID is a unique identifier for each tunnel and the pre-shared key is a secret passphrase that authenticates the peers.

Option D is correct because IPsec is only enabled through the CLI on FortiAnalyzer1. You cannot configure IPsec settings through the GUI on FortiAnalyzer.

Question 8

Report
Export
Collapse

Which two statements about log forwarding are true? (Choose two.)

A.
Forwarded logs cannot be filtered to match specific criteria.
A.
Forwarded logs cannot be filtered to match specific criteria.
Answers
B.
Logs are forwarded in real-time only.
B.
Logs are forwarded in real-time only.
Answers
C.
The client retains a local copy of the logs after forwarding.
C.
The client retains a local copy of the logs after forwarding.
Answers
D.
You can use aggregation mode only with another FortiAnalyzer.
D.
You can use aggregation mode only with another FortiAnalyzer.
Answers
Suggested answer: C, D

Explanation:

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/420493/modes

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/621804/logforwarding

Question 9

Report
Export
Collapse

Which two methods can you use to send event notifications when an event occurs that matches a configured event handler? (Choose two.)

A.
SMS
A.
SMS
Answers
B.
Email
B.
Email
Answers
C.
SNMP
C.
SNMP
Answers
D.
IM
D.
IM
Answers
Suggested answer: B, C

Explanation:

Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/1800_Events/0200_Event_handlers/0600_Create_event_handlers.htm

Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/1800_Events/0200_Event_handlers/0600_Create_event_handlers.htm

Question 10

Report
Export
Collapse

Consider the CLI command:

What is the purpose of the command?

A.
To add a unique tag to each log to prove that it came from this FortiAnalyzer
A.
To add a unique tag to each log to prove that it came from this FortiAnalyzer
Answers
B.
To add the MD5 hash value and authentication code
B.
To add the MD5 hash value and authentication code
Answers
C.
To add a log file checksum
C.
To add a log file checksum
Answers
D.
To encrypt log communications
D.
To encrypt log communications
Answers
Suggested answer: C

Explanation:

https://docs.fortinet.com/document/fortianalyzer/6.2.5/cli-reference/849211/global

Total 137 questions
Go to page: of 14
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms