ExamGecko
Login
Home / Fortinet / NSE5_FAZ-7.2 / List of questions
Ask Question

Fortinet NSE5_FAZ-7.2 Practice Test - Questions Answers, Page 4

Add to Whishlist

List of questions

Question 31

Report Export Collapse

Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?

To properly correlate logs
To properly correlate logs
To use real-time forwarding
To use real-time forwarding
To resolve host names
To resolve host names
To improve DNS response times
To improve DNS response times
Suggested answer: A
Explanation:

Fortinet NSE5_FAZ-7.2 image Question 31 explanation 26318 09182024190052000000

asked 18/09/2024
Stian Godoe
49 questions

Question 32

Report Export Collapse

You need to upgrade your FortiAnalyzer firmware.

What happens to the logs being sent to FortiAnalyzer from FortiGate during the time FortiAnalyzer is temporarily unavailable?

FortiAnalyzer uses log fetching to retrieve the logs when back online
FortiAnalyzer uses log fetching to retrieve the logs when back online
FortiGate uses the miglogd process to cache the logs
FortiGate uses the miglogd process to cache the logs
The logfiled process stores logs in offline mode
The logfiled process stores logs in offline mode
Logs are dropped
Logs are dropped
Suggested answer: B
Explanation:

Fortinet NSE5_FAZ-7.2 image Question 32 explanation 26319 09182024190052000000

asked 18/09/2024
Willem Alves
33 questions

Question 33

Report Export Collapse

After you have moved a registered logging device out of one ADOM and into a new ADOM, what is the purpose of running the following CLI command?

execute sql-local rebuild-adom <new-ADOM-name>

To reset the disk quota enforcement to default
To reset the disk quota enforcement to default
To remove the analytics logs of the device from the old database
To remove the analytics logs of the device from the old database
To migrate the archive logs to the new ADOM
To migrate the archive logs to the new ADOM
To populate the new ADOM with analytical logs for the moved device, so you can run reports
To populate the new ADOM with analytical logs for the moved device, so you can run reports
Suggested answer: D
Explanation:

Fortinet NSE5_FAZ-7.2 image Question 33 explanation 26320 09182024190052000000

FortiAnalyzer_7.0_Study_Guide-Online.pdf page 128: Are the device analytics logs required for reports in the new ADOM? If so, rebuild the new ADOM database

asked 18/09/2024
Mario Peralta
41 questions

Question 34

Report Export Collapse

If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?

Hot swap the disk
Hot swap the disk
Replace the disk and rebuild the RAID manually
Replace the disk and rebuild the RAID manually
Take no action if the RAID level supports a failed disk
Take no action if the RAID level supports a failed disk
Shut down FortiAnalyzer and replace the disk
Shut down FortiAnalyzer and replace the disk
Suggested answer: D
Explanation:

https://kb.fortinet.com/kb/documentLink.do?externalID=FD46446#:~:text=On%20FortiAnalyzer%2FFortiManager%20devices%20that,to%20exchanging%20the%20hard%20disk.

If a hard disk on a FortiAnalyzer unit fails, it must be replaced. On FortiAnalyzer devices that support hardware RAID, the hard disk can be replaced while the unit is still running known as hot swapping.

On FortiAnalyzer units with software RAID, the device must be shutdown prior to exchanging the hard disk.

Reference: https://community.fortinet.com/t5/FortiAnalyzer/Technical-Note-How-to-swap-Hard-Disk-on-FortiAnalyzer/tap/194997?externalID=FD41397#:~:text=If%20a%20hard%20disk%20on,process%20known%20as%20hot%20swapping

asked 18/09/2024
Sergio Zozulenko
46 questions

Question 35

Report Export Collapse

If you upgrade the FortiAnalyzer firmware, which report element can be affected?

Custom datasets
Custom datasets
Report scheduling
Report scheduling
Report settings
Report settings
Output profiles
Output profiles
Suggested answer: A
Explanation:

https://docs.fortinet.com/document/fortianalyzer/6.2.5/upgrade-guide/669300/checking-reports

asked 18/09/2024
Vangelis Gouloutis
44 questions

Question 36

Report Export Collapse

FortiAnalyzer reports are dropping analytical data from 15 days ago, even though the data policy setting for analytics logs is 60 days.

What is the most likely problem?

Quota enforcement is acting on analytical data before a report is complete
Quota enforcement is acting on analytical data before a report is complete
Logs are rolling before the report is run
Logs are rolling before the report is run
CPU resources are too high
CPU resources are too high
Disk utilization for archive logs is set for 15 days
Disk utilization for archive logs is set for 15 days
Suggested answer: B
Explanation:

Reference: https://forum.fortinet.com/tm.aspx?m=138806

asked 18/09/2024
Nils Stelling
31 questions

Question 37

Report Export Collapse

Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?

Antivirus logs
Antivirus logs
Web filter logs
Web filter logs
IPS logs
IPS logs
Application control logs
Application control logs
Suggested answer: B
Explanation:

Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/3600_FortiView/0200_Using_FortiView/1200_Compromised_hosts_page.htm?TocPath=FortiView%7CUsing%20FortiView%7C_____6

asked 18/09/2024
Oleksandr Kondratchuk
37 questions

Question 38

Report Export Collapse

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)

A local wildcard administrator account
A local wildcard administrator account
A remote LDAP server
A remote LDAP server
A trusted host profile that restricts access to the LDAP group
A trusted host profile that restricts access to the LDAP group
An administrator group
An administrator group
Suggested answer: A, B
Explanation:

Reference: https://kb.fortinet.com/kb/documentLink.do?externalID=FD38567

asked 18/09/2024
Corentin ADJOVI
43 questions

Question 39

Report Export Collapse

When you perform a system backup, what does the backup configuration contain? (Choose two.)

Generated reports
Generated reports
Device list
Device list
Authorized devices logs
Authorized devices logs
System information
System information
Suggested answer: B, D
Explanation:

https://help.fortinet.com/fa/cli-olh/5-6-5/Content/Document/1400_execute/backup.htm

Reference: https://help.fortinet.com/fauth/5-2/Content/Admin%20Guides/5_2%20Admin%20Guide/300/301_Dashboard.htm

asked 18/09/2024
Danish Vohra
41 questions

Question 40

Report Export Collapse

Which clause is considered mandatory in SELECT statements used by the FortiAnalyzer to generate reports?

FROM
FROM
LIMIT
LIMIT
WHERE
WHERE
ORDER BY
ORDER BY
Suggested answer: A
Explanation:

Reference: https://kb.fortinet.com/kb/documentLink.do?externalID=FD48500

Fortinet NSE5_FAZ-7.2 image Question 40 explanation 26327 09182024190052000000

asked 18/09/2024
Ramon Pasay
43 questions
Total 137 questions
Go to page: of 14
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?
On FortiAnalyzer, what is a wildcard administrator account?
Which SQL query is in the correct order to query the database in the FortiAnslyzer?
Which statement correctly describes the management extensions available on FortiAnalyzer?
What purposes does the auto-cache setting on reports serve? (Choose two.)
An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email. What could be the problem?
Which two statements are true regarding ADOM modes? (Choose two.)
Which two statements are correct regarding the export and import of playbooks? (Choose two.)
Why run the command diagnose sql status sqlplugind?
What is the recommended method of expanding disk space on a FortiAnalyzer VM?