ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FMG-7.2

Fortinet NSE5_FMG-7.2 Practice Test - Questions Answers, Page 3

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator's PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
Refer to the exhibit. Which two statements are true if the script is executed using the Device Database option? (Choose two.)
An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
Refer to the exhibit. Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
Push updates are failing on a FortiGate device that is located behind a NAT device Which two settings should the administrator check? (Choose two.)
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>. Which device name and serial number must the administrator use?
An administrator created a header and footer global policy package and assigned it to an ADOM. What are two outcomes from this action? (Choose two.)
Refer to the exhibit. A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?
What does a policy package status of Modified indicate?
Refer to the exhibit. An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.)

Question 21

Report
Export
Collapse

An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.

How should the Workspace mode be configured on FortiManager?

A.
Set to workflow and use the ADOM locking feature
A.
Set to workflow and use the ADOM locking feature
Answers
B.
Set to read/write and use the policy locking feature
B.
Set to read/write and use the policy locking feature
Answers
C.
Set to normal and use the policy locking feature
C.
Set to normal and use the policy locking feature
Answers
D.
Set to disable and use the policy locking feature
D.
Set to disable and use the policy locking feature
Answers
Suggested answer: A

Question 22

Report
Export
Collapse

Refer to the following exhibit:

Which of the following statements are true based on this configuration? (Choose two.)

A.
The same administrator can lock more than one ADOM at the same time
A.
The same administrator can lock more than one ADOM at the same time
Answers
B.
Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out
B.
Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out
Answers
C.
Unlocking an ADOM will submit configuration changes automatically to the approval administrator
C.
Unlocking an ADOM will submit configuration changes automatically to the approval administrator
Answers
D.
Unlocking an ADOM will install configuration automatically on managed devices
D.
Unlocking an ADOM will install configuration automatically on managed devices
Answers
Suggested answer: A, B

Question 23

Report
Export
Collapse

Refer to the exhibits.

Exhibit one.

Exhibit two.

An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.

What can be the main reason for these unset commands?

A.
The DNS addresses in the default system settings are the same as the Training system template
A.
The DNS addresses in the default system settings are the same as the Training system template
Answers
B.
The Training system template has other default settings
B.
The Training system template has other default settings
Answers
C.
The ADOM is locked by another administrator
C.
The ADOM is locked by another administrator
Answers
D.
The Training system template does not have assigned devices
D.
The Training system template does not have assigned devices
Answers
Suggested answer: B

Question 24

Report
Export
Collapse

An administrator would like to create an SD-WAN using central management in the Training ADOM.

To create an SD-WAN using central management, which two steps must be completed? (Choose two.)

A.
Specify a gateway address when you create a default SD-WAN static route
A.
Specify a gateway address when you create a default SD-WAN static route
Answers
B.
Enable SD-WAN central management in the Training ADOM
B.
Enable SD-WAN central management in the Training ADOM
Answers
C.
Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN template settings
C.
Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN template settings
Answers
D.
Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces
D.
Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces
Answers
Suggested answer: B, D

Question 25

Report
Export
Collapse

View the following exhibit.

Which statement is true regarding this failed installation log?

A.
Policy ID 2 is installed without a source address
A.
Policy ID 2 is installed without a source address
Answers
B.
Policy ID 2 will not be installed
B.
Policy ID 2 will not be installed
Answers
C.
Policy ID 2 is installed in disabled state
C.
Policy ID 2 is installed in disabled state
Answers
D.
Policy ID 2 is installed without a source device
D.
Policy ID 2 is installed without a source device
Answers
Suggested answer: B

Question 26

Report
Export
Collapse

Refer to the exhibit.

Which statement about the object named ALL is true?

A.
FortiManager updated the object ALL using the FortiGate value in its database.
A.
FortiManager updated the object ALL using the FortiGate value in its database.
Answers
B.
FortiManager installed the object ALL with the updated value.
B.
FortiManager installed the object ALL with the updated value.
Answers
C.
FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.
C.
FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.
Answers
D.
FortiManager updated the object ALL using the FortiManager value in its database.
D.
FortiManager updated the object ALL using the FortiManager value in its database.
Answers
Suggested answer: A

Question 27

Report
Export
Collapse

View the following exhibit.

What is the purpose of setting ADOM Mode to Advanced?

A.
The setting allows automatic updates to the policy package configuration for a managed device
A.
The setting allows automatic updates to the policy package configuration for a managed device
Answers
B.
The setting enables the ADOMs feature on FortiManager
B.
The setting enables the ADOMs feature on FortiManager
Answers
C.
This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs.
C.
This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs.
Answers
D.
The setting disables concurrent ADOM access and adds ADOM locking
D.
The setting disables concurrent ADOM access and adds ADOM locking
Answers
Suggested answer: C

Question 28

Report
Export
Collapse

An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.

What can prevent an admin account that has Super_User rights over the device from approving a workflow session?

A.
Trainer is not a part of workflow approval group
A.
Trainer is not a part of workflow approval group
Answers
B.
Trainer does not have full rights over this ADOM
B.
Trainer does not have full rights over this ADOM
Answers
C.
Trainer must close Student's workflow session before approving the request
C.
Trainer must close Student's workflow session before approving the request
Answers
D.
Student, who submitted the workflow session, must first self-approve the request
D.
Student, who submitted the workflow session, must first self-approve the request
Answers
Suggested answer: A

Question 29

Report
Export
Collapse

Refer to the exhibit.

You are using the Quick Install option to install configuration changes on the managed FortiGate.

Which two statements correctly describe the result? (Choose two.)

A.
It will not create a new revision in the revision history
A.
It will not create a new revision in the revision history
Answers
B.
It installs device-level changes to FortiGate without launching the Install Wizard
B.
It installs device-level changes to FortiGate without launching the Install Wizard
Answers
C.
It cannot be canceled once initiated and changes will be installed on the managed device
C.
It cannot be canceled once initiated and changes will be installed on the managed device
Answers
D.
It provides the option to preview configuration changes prior to installing them
D.
It provides the option to preview configuration changes prior to installing them
Answers
Suggested answer: B, C

Explanation:

FortiManager_6.4_Study_Guide-Online -- page 164

The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing. Administrator should be certain of the changes before using this install option, because the install can't be cancelled after the process is initiated.

Question 30

Report
Export
Collapse

View the following exhibit:

How will FortiManager try to get updates for antivirus and IPS?

A.
From the list of configured override servers with ability to fall back to public FDN servers
A.
From the list of configured override servers with ability to fall back to public FDN servers
Answers
B.
From the configured override server list only
B.
From the configured override server list only
Answers
C.
From the default server fdsl.fortinet.com
C.
From the default server fdsl.fortinet.com
Answers
D.
From public FDNI server with highest index number only
D.
From public FDNI server with highest index number only
Answers
Suggested answer: A
Total 103 questions
Go to page: of 11
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms