ExamGecko
Login
Home / Fortinet / NSE5_FMG-7.2 / List of questions
Ask Question

Fortinet NSE5_FMG-7.2 Practice Test - Questions Answers, Page 4

Add to Whishlist

List of questions

Question 31

Report Export Collapse

View the following exhibit.

Fortinet NSE5_FMG-7.2 image Question 31 26504 09182024190431000000

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?

The Install On column value represents successful installation on the managed devices
The Install On column value represents successful installation on the managed devices
Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
Policy seq#3 will be installed on the Trainer[NAT] VDOM only
Policy seq#3 will be installed on the Trainer[NAT] VDOM only
Policy seq#3 will be not installed on any managed device
Policy seq#3 will be not installed on any managed device
Suggested answer: B
asked 18/09/2024
Arjen Vleugel
50 questions

Question 32

Report Export Collapse

View the following exhibit.

Fortinet NSE5_FMG-7.2 image Question 32 26505 09182024190431000000

An administrator is importing a new device to FortiManager and has selected the shown options. What will happen if the administrator makes the changes and installs the modified policy package on this managed FortiGate?

The unused objects that are not tied to the firewall policies will be installed on FortiGate
The unused objects that are not tied to the firewall policies will be installed on FortiGate
The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate
The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate
The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted
The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted
The unused objects that are not tied to the firewall policies in policy package will be deleted from the FortiManager database
The unused objects that are not tied to the firewall policies in policy package will be deleted from the FortiManager database
Suggested answer: C
asked 18/09/2024
Wessel Beulink
47 questions

Question 33

Report Export Collapse

View the following exhibit, which shows the Download Import Report:

Fortinet NSE5_FMG-7.2 image Question 33 26506 09182024190431000000

Why it is failing to import firewall policy ID 2?

The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
Suggested answer: A
Explanation:

FortiManager_6.4_Study_Guide-Online -- page 331 & 332

asked 18/09/2024
bert toger
44 questions

Question 34

Report Export Collapse

View the following exhibit:

Fortinet NSE5_FMG-7.2 image Question 34 26507 09182024190431000000

Which two statements are true if the script is executed using the Remote FortiGate Directly (via CLI) option? (Choose two.)

You must install these changes using Install Wizard
You must install these changes using Install Wizard
FortiGate will auto-update the FortiManager's device-level database.
FortiGate will auto-update the FortiManager's device-level database.
FortiManager will create a new revision history.
FortiManager will create a new revision history.
FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
Suggested answer: B, C
asked 18/09/2024
Arvind Prasad S
47 questions

Question 35

Report Export Collapse

Refer to the exhibit.

Fortinet NSE5_FMG-7.2 image Question 35 26508 09182024190431000000

Which two statements about the output are true? (Choose two.)

The latest revision history for the managed FortiGate does match with the FortiGate running configuration
The latest revision history for the managed FortiGate does match with the FortiGate running configuration
Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
The latest history for the managed FortiGate does not match with the device-level database
The latest history for the managed FortiGate does not match with the device-level database
Configuration changes directly made on the FortiGate have been automatically updated to device-level database
Configuration changes directly made on the FortiGate have been automatically updated to device-level database
Suggested answer: A, C
Explanation:

STATUS: dev-db: modified; conf: in sync; cond: pending; dm: retrieved; conn: up -- dev-db: modified -- This is the device setting status which indicates that configuration changes were made on FortiManager. -- conf: in sync -- This is the sync status which shows that the latest revision history is in sync with Fortigate's configuration. -- cond: pending -- This is the configuration status which says that configuration changes need to be installed.

Most probably a retrieve was done in the past (dm: retrieved) updating the revision history DB (conf: in sync) and FortiManager device level DB, now there is a new modification on FortiManager device level DB (dev-db: modified) which wasn't installed to FortiGate (cond: pending), hence; revision history DB is not aware of that modification and doesn't match device DB.

Conclusion: -- Revision DB does match FortiGate. -- No changes were installed to FortiGate yet. -- Device DB doesn't match Revision DB. -- No changes were done on FortiGate (auto-update) but configuration was retrieved instead

After an Auto-Update or Retrieve: device database = latest revision = FGT

Then after a manual change on FMG end (but no install yet): latest revision = FGT (still) but now device database has been modified (is different).

After reverting to a previous revision in revision history: device database = reverted revision != FGT

Topic 2, Main Questions Pool B

asked 18/09/2024
Josefa Vera Gago
42 questions

Question 36

Report Export Collapse

Which two statements regarding device management on FortiManager are true? (Choose two.)

FortiGate devices in HA cluster devices are counted as a single device.
FortiGate devices in HA cluster devices are counted as a single device.
FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.
FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.
FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
The maximum number of managed devices for each ADOM is 500.
The maximum number of managed devices for each ADOM is 500.
Suggested answer: A, C
asked 18/09/2024
Alpesh Panchal
27 questions

Question 37

Report Export Collapse

Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

The Security Fabric license, group name and password are required for the FortiManager Security Fabric integration
The Security Fabric license, group name and password are required for the FortiManager Security Fabric integration
The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
The Security Fabric settings are part of the device level settings
The Security Fabric settings are part of the device level settings
The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
Suggested answer: C, D
asked 18/09/2024
Giulia Alberghi
45 questions

Question 38

Report Export Collapse

Refer to the exhibit.

Fortinet NSE5_FMG-7.2 image Question 38 26511 09182024190431000000

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

You must install these changes using the Install Wizard to a managed device
You must install these changes using the Install Wizard to a managed device
The successful execution of a script on the Device Database will create a new revision history
The successful execution of a script on the Device Database will create a new revision history
The script history will show successful installation of the script on the remote FortiGate
The script history will show successful installation of the script on the remote FortiGate
The Device Settings Status will be tagged as Modified
The Device Settings Status will be tagged as Modified
Suggested answer: A, D
asked 18/09/2024
Carlos Augusto Quintal
34 questions

Question 39

Report Export Collapse

Refer to the exhibit.

Fortinet NSE5_FMG-7.2 image Question 39 26512 09182024190431000000

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.

Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)

The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
The administrator profile does not have full access privileges like the Super_User profile.
The administrator profile does not have full access privileges like the Super_User profile.
The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
FortiAnalyzer features are not enabled on FortiManager.
FortiAnalyzer features are not enabled on FortiManager.
Suggested answer: B, D
asked 18/09/2024
Alexandru Ouatu
51 questions

Question 40

Report Export Collapse

Which two items are included in the FortiManager backup? (Choose two.)

FortiGuard database
FortiGuard database
Global database
Global database
Logs
Logs
All devices
All devices
Suggested answer: B, D
asked 18/09/2024
ali ghoubali
41 questions
Total 103 questions
Go to page: of 11
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
View the following exhibit. If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
Refer to the exhibit. An administrator wants to create a policy on the Staging ADOM in backup mode, and install it on the FortiGate device in the same ADOM. How can the administrator perform this task?
Refer to the exhibits. Exhibit one. Exhibit two. An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed. What can be the main reason for these unset commands?
An administrator wants to delete an address object that is currently referenced in a firewall policy. What can the administrator expect to happen?
What are two outcomes of ADOM revisions? (Choose two.)
In addition to the default ADOMs, an administrator has created a new ADOM named Training for FortiGate devices. The administrator sent a device registration to FortiManager from a remote FortiGate. Which one of the following statements is true?
An administrator's PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators. How should the Workspace mode be configured on FortiManager?