ExamGecko
Login
Home / Fortinet / NSE5_FMG-7.2 / List of questions
Ask Question

Fortinet NSE5_FMG-7.2 Practice Test - Questions Answers, Page 2

Add to Whishlist

List of questions

Question 11

Report Export Collapse

You are moving managed FortiGate devices from one ADOM to a new ADOM.

Which statement correctly describes the expected result?

Any pending device settings will be installed automatically
Any pending device settings will be installed automatically
Any unused objects from a previous ADOM are moved to the new ADOM automatically
Any unused objects from a previous ADOM are moved to the new ADOM automatically
The shared policy package will not be moved to the new ADOM
The shared policy package will not be moved to the new ADOM
Policy packages will be imported into the new ADOM automaticallyD
Policy packages will be imported into the new ADOM automaticallyD
Suggested answer: C
asked 18/09/2024
Brett Tin
44 questions

Question 12

Report Export Collapse

In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.
Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.
FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
Suggested answer: C
Explanation:

FortiManager_6.4_Study_Guide-Online -- page 346

FortiManager HA doesn't support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:

1. Manually reconfigure one of the secondary devices to become the primary device

2. Reconfigure all other secondary devices to point to the new primary device

asked 18/09/2024
Deepak PSK
52 questions

Question 13

Report Export Collapse

Which three settings are the factory default settings on FortiManager? (Choose three.)

Username is admin
Username is admin
Password is fortinet
Password is fortinet
FortiAnalyzer features are disabled
FortiAnalyzer features are disabled
Reports and Event Monitor panes are enabled
Reports and Event Monitor panes are enabled
port1 interface IP address is 192.168.1.99/24
port1 interface IP address is 192.168.1.99/24
Suggested answer: A, C, E
asked 18/09/2024
Gabriel Ty
37 questions

Question 14

Report Export Collapse

When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?

After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.
FortiManager will revert and install a previous configuration revision on the managed FortiGate.
FortiManager will revert and install a previous configuration revision on the managed FortiGate.
FortiGate will reject the CLI commands that will cause the tunnel to go down.
FortiGate will reject the CLI commands that will cause the tunnel to go down.
FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.
FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.
Suggested answer: A
Explanation:

The configuration change will break the fgfm connection, causing the FortiGate unit to attempt to reconnect for 900 seconds. If the FortiGate cannot reconnect, it will rollback to its previous configuration.

asked 18/09/2024
Russell Ang
39 questions

Question 15

Report Export Collapse

An administrator run the reload failure command: diagnose test deploymanager reload config

<deviceid> on FortiManager. What does this command do?

It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
It installs the latest configuration on the specified FortiGate and update the revision history database.
It installs the latest configuration on the specified FortiGate and update the revision history database.
It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
It installs the provisioning template configuration on the specified FortiGate.
It installs the provisioning template configuration on the specified FortiGate.
Suggested answer: A
asked 18/09/2024
RANA MANSOUR
39 questions

Question 16

Report Export Collapse

An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.

Which troubleshooting step should you take to resolve the issue?

Make sure FortiManager Access is enabled in the administrator profile
Make sure FortiManager Access is enabled in the administrator profile
Make sure Offline Mode is disabled
Make sure Offline Mode is disabled
Make sure the administrator IP address is part of the trusted hosts.
Make sure the administrator IP address is part of the trusted hosts.
Make sure ADOMs are enabled and the administrator has access to the Global ADOM
Make sure ADOMs are enabled and the administrator has access to the Global ADOM
Suggested answer: C
Explanation:

Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.

asked 18/09/2024
Kinshuk Choubisa
49 questions

Question 17

Report Export Collapse

What are two outcomes of ADOM revisions? (Choose two.)

ADOM revisions can significantly increase the size of the configuration backups.
ADOM revisions can significantly increase the size of the configuration backups.
ADOM revisions can save the current size of the whole ADOM
ADOM revisions can save the current size of the whole ADOM
ADOM revisions can create System Checkpoints for the FortiManager configuration
ADOM revisions can create System Checkpoints for the FortiManager configuration
ADOM revisions can save the current state of all policy packages and objects for an ADOM
ADOM revisions can save the current state of all policy packages and objects for an ADOM
Suggested answer: A, D
asked 18/09/2024
Laura G
63 questions

Question 18

Report Export Collapse

View the following exhibit.

Fortinet NSE5_FMG-7.2 image Question 18 26491 09182024190431000000

If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)

FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management.
FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management.
During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
Suggested answer: A, C
Explanation:

Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.

asked 18/09/2024
Arthur la Feber
45 questions

Question 19

Report Export Collapse

Which two settings must be configured for SD-WAN Central Management? (Choose two.)

SD-WAN must be enabled on per-ADOM basis
SD-WAN must be enabled on per-ADOM basis
You can create multiple SD-WAN interfaces per VDOM
You can create multiple SD-WAN interfaces per VDOM
When you configure an SD-WAN, you must specify at least two member interfaces.
When you configure an SD-WAN, you must specify at least two member interfaces.
The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
Suggested answer: A, C
asked 18/09/2024
Sandeep Ramakrishnan
56 questions

Question 20

Report Export Collapse

An administrator wants to delete an address object that is currently referenced in a firewall policy.

What can the administrator expect to happen?

FortiManager will not allow the administrator to delete a referenced address object
FortiManager will not allow the administrator to delete a referenced address object
FortiManager will disable the status of the referenced firewall policy
FortiManager will disable the status of the referenced firewall policy
FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
FortiManager will replace the deleted address object with all address object in the referenced firewall policy
FortiManager will replace the deleted address object with all address object in the referenced firewall policy
Suggested answer: C
asked 18/09/2024
Justin Kim
47 questions
Total 103 questions
Go to page: of 11
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
View the following exhibit. If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
Refer to the exhibit. An administrator wants to create a policy on the Staging ADOM in backup mode, and install it on the FortiGate device in the same ADOM. How can the administrator perform this task?
Refer to the exhibits. Exhibit one. Exhibit two. An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed. What can be the main reason for these unset commands?
An administrator wants to delete an address object that is currently referenced in a firewall policy. What can the administrator expect to happen?
What are two outcomes of ADOM revisions? (Choose two.)
In addition to the default ADOMs, an administrator has created a new ADOM named Training for FortiGate devices. The administrator sent a device registration to FortiManager from a remote FortiGate. Which one of the following statements is true?
An administrator's PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators. How should the Workspace mode be configured on FortiManager?