ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FMG-7.2

Fortinet NSE5_FMG-7.2 Practice Test - Questions Answers, Page 2

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator's PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
Refer to the exhibit. Which two statements are true if the script is executed using the Device Database option? (Choose two.)
An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
Refer to the exhibit. A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?
What does a policy package status of Modified indicate?
Refer to the exhibit. Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
Push updates are failing on a FortiGate device that is located behind a NAT device Which two settings should the administrator check? (Choose two.)
Refer to the exhibit. An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.)
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>. Which device name and serial number must the administrator use?
An administrator created a header and footer global policy package and assigned it to an ADOM. What are two outcomes from this action? (Choose two.)

Question 11

Report
Export
Collapse

You are moving managed FortiGate devices from one ADOM to a new ADOM.

Which statement correctly describes the expected result?

A.
Any pending device settings will be installed automatically
A.
Any pending device settings will be installed automatically
Answers
B.
Any unused objects from a previous ADOM are moved to the new ADOM automatically
B.
Any unused objects from a previous ADOM are moved to the new ADOM automatically
Answers
C.
The shared policy package will not be moved to the new ADOM
C.
The shared policy package will not be moved to the new ADOM
Answers
D.
Policy packages will be imported into the new ADOM automaticallyD
D.
Policy packages will be imported into the new ADOM automaticallyD
Answers
Suggested answer: C

Question 12

Report
Export
Collapse

In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

A.
Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
A.
Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
Answers
B.
Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
B.
Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
Answers
C.
Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.
C.
Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.
Answers
D.
FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
D.
FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
Answers
Suggested answer: C

Explanation:

FortiManager_6.4_Study_Guide-Online -- page 346

FortiManager HA doesn't support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:

1. Manually reconfigure one of the secondary devices to become the primary device

2. Reconfigure all other secondary devices to point to the new primary device

Question 13

Report
Export
Collapse

Which three settings are the factory default settings on FortiManager? (Choose three.)

A.
Username is admin
A.
Username is admin
Answers
B.
Password is fortinet
B.
Password is fortinet
Answers
C.
FortiAnalyzer features are disabled
C.
FortiAnalyzer features are disabled
Answers
D.
Reports and Event Monitor panes are enabled
D.
Reports and Event Monitor panes are enabled
Answers
E.
port1 interface IP address is 192.168.1.99/24
E.
port1 interface IP address is 192.168.1.99/24
Answers
Suggested answer: A, C, E

Question 14

Report
Export
Collapse

When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?

A.
After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
A.
After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
Answers
B.
FortiManager will revert and install a previous configuration revision on the managed FortiGate.
B.
FortiManager will revert and install a previous configuration revision on the managed FortiGate.
Answers
C.
FortiGate will reject the CLI commands that will cause the tunnel to go down.
C.
FortiGate will reject the CLI commands that will cause the tunnel to go down.
Answers
D.
FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.
D.
FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.
Answers
Suggested answer: A

Explanation:

The configuration change will break the fgfm connection, causing the FortiGate unit to attempt to reconnect for 900 seconds. If the FortiGate cannot reconnect, it will rollback to its previous configuration.

Question 15

Report
Export
Collapse

An administrator run the reload failure command: diagnose test deploymanager reload config

<deviceid> on FortiManager. What does this command do?

A.
It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
A.
It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
Answers
B.
It installs the latest configuration on the specified FortiGate and update the revision history database.
B.
It installs the latest configuration on the specified FortiGate and update the revision history database.
Answers
C.
It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
C.
It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
Answers
D.
It installs the provisioning template configuration on the specified FortiGate.
D.
It installs the provisioning template configuration on the specified FortiGate.
Answers
Suggested answer: A

Question 16

Report
Export
Collapse

An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.

Which troubleshooting step should you take to resolve the issue?

A.
Make sure FortiManager Access is enabled in the administrator profile
A.
Make sure FortiManager Access is enabled in the administrator profile
Answers
B.
Make sure Offline Mode is disabled
B.
Make sure Offline Mode is disabled
Answers
C.
Make sure the administrator IP address is part of the trusted hosts.
C.
Make sure the administrator IP address is part of the trusted hosts.
Answers
D.
Make sure ADOMs are enabled and the administrator has access to the Global ADOM
D.
Make sure ADOMs are enabled and the administrator has access to the Global ADOM
Answers
Suggested answer: C

Explanation:

Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.

Question 17

Report
Export
Collapse

What are two outcomes of ADOM revisions? (Choose two.)

A.
ADOM revisions can significantly increase the size of the configuration backups.
A.
ADOM revisions can significantly increase the size of the configuration backups.
Answers
B.
ADOM revisions can save the current size of the whole ADOM
B.
ADOM revisions can save the current size of the whole ADOM
Answers
C.
ADOM revisions can create System Checkpoints for the FortiManager configuration
C.
ADOM revisions can create System Checkpoints for the FortiManager configuration
Answers
D.
ADOM revisions can save the current state of all policy packages and objects for an ADOM
D.
ADOM revisions can save the current state of all policy packages and objects for an ADOM
Answers
Suggested answer: A, D

Question 18

Report
Export
Collapse

View the following exhibit.

If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)

A.
FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
A.
FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
Answers
B.
FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management.
B.
FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management.
Answers
C.
During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
C.
During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
Answers
D.
If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
D.
If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
Answers
Suggested answer: A, C

Explanation:

Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.

Question 19

Report
Export
Collapse

Which two settings must be configured for SD-WAN Central Management? (Choose two.)

A.
SD-WAN must be enabled on per-ADOM basis
A.
SD-WAN must be enabled on per-ADOM basis
Answers
B.
You can create multiple SD-WAN interfaces per VDOM
B.
You can create multiple SD-WAN interfaces per VDOM
Answers
C.
When you configure an SD-WAN, you must specify at least two member interfaces.
C.
When you configure an SD-WAN, you must specify at least two member interfaces.
Answers
D.
The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
D.
The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
Answers
Suggested answer: A, C

Question 20

Report
Export
Collapse

An administrator wants to delete an address object that is currently referenced in a firewall policy.

What can the administrator expect to happen?

A.
FortiManager will not allow the administrator to delete a referenced address object
A.
FortiManager will not allow the administrator to delete a referenced address object
Answers
B.
FortiManager will disable the status of the referenced firewall policy
B.
FortiManager will disable the status of the referenced firewall policy
Answers
C.
FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
C.
FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
Answers
D.
FortiManager will replace the deleted address object with all address object in the referenced firewall policy
D.
FortiManager will replace the deleted address object with all address object in the referenced firewall policy
Answers
Suggested answer: C
Total 103 questions
Go to page: of 11
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms