ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FMG-7.2

Fortinet NSE5_FMG-7.2 Practice Test - Questions Answers, Page 4

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator's PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
Refer to the exhibit. Which two statements are true if the script is executed using the Device Database option? (Choose two.)
An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
Refer to the exhibit. Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
Push updates are failing on a FortiGate device that is located behind a NAT device Which two settings should the administrator check? (Choose two.)
Refer to the exhibit. An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.)
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>. Which device name and serial number must the administrator use?
An administrator created a header and footer global policy package and assigned it to an ADOM. What are two outcomes from this action? (Choose two.)
Refer to the exhibit. A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?
What does a policy package status of Modified indicate?

Question 31

Report
Export
Collapse

View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?

A.
The Install On column value represents successful installation on the managed devices
A.
The Install On column value represents successful installation on the managed devices
Answers
B.
Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
B.
Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
Answers
C.
Policy seq#3 will be installed on the Trainer[NAT] VDOM only
C.
Policy seq#3 will be installed on the Trainer[NAT] VDOM only
Answers
D.
Policy seq#3 will be not installed on any managed device
D.
Policy seq#3 will be not installed on any managed device
Answers
Suggested answer: B

Question 32

Report
Export
Collapse

View the following exhibit.

An administrator is importing a new device to FortiManager and has selected the shown options. What will happen if the administrator makes the changes and installs the modified policy package on this managed FortiGate?

A.
The unused objects that are not tied to the firewall policies will be installed on FortiGate
A.
The unused objects that are not tied to the firewall policies will be installed on FortiGate
Answers
B.
The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate
B.
The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate
Answers
C.
The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted
C.
The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted
Answers
D.
The unused objects that are not tied to the firewall policies in policy package will be deleted from the FortiManager database
D.
The unused objects that are not tied to the firewall policies in policy package will be deleted from the FortiManager database
Answers
Suggested answer: C

Question 33

Report
Export
Collapse

View the following exhibit, which shows the Download Import Report:

Why it is failing to import firewall policy ID 2?

A.
The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
A.
The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
Answers
B.
Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
B.
Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
Answers
C.
Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
C.
Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
Answers
D.
Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
D.
Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
Answers
Suggested answer: A

Explanation:

FortiManager_6.4_Study_Guide-Online -- page 331 & 332

Question 34

Report
Export
Collapse

View the following exhibit:

Which two statements are true if the script is executed using the Remote FortiGate Directly (via CLI) option? (Choose two.)

A.
You must install these changes using Install Wizard
A.
You must install these changes using Install Wizard
Answers
B.
FortiGate will auto-update the FortiManager's device-level database.
B.
FortiGate will auto-update the FortiManager's device-level database.
Answers
C.
FortiManager will create a new revision history.
C.
FortiManager will create a new revision history.
Answers
D.
FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
D.
FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
Answers
Suggested answer: B, C

Question 35

Report
Export
Collapse

Refer to the exhibit.

Which two statements about the output are true? (Choose two.)

A.
The latest revision history for the managed FortiGate does match with the FortiGate running configuration
A.
The latest revision history for the managed FortiGate does match with the FortiGate running configuration
Answers
B.
Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
B.
Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
Answers
C.
The latest history for the managed FortiGate does not match with the device-level database
C.
The latest history for the managed FortiGate does not match with the device-level database
Answers
D.
Configuration changes directly made on the FortiGate have been automatically updated to device-level database
D.
Configuration changes directly made on the FortiGate have been automatically updated to device-level database
Answers
Suggested answer: A, C

Explanation:

STATUS: dev-db: modified; conf: in sync; cond: pending; dm: retrieved; conn: up -- dev-db: modified -- This is the device setting status which indicates that configuration changes were made on FortiManager. -- conf: in sync -- This is the sync status which shows that the latest revision history is in sync with Fortigate's configuration. -- cond: pending -- This is the configuration status which says that configuration changes need to be installed.

Most probably a retrieve was done in the past (dm: retrieved) updating the revision history DB (conf: in sync) and FortiManager device level DB, now there is a new modification on FortiManager device level DB (dev-db: modified) which wasn't installed to FortiGate (cond: pending), hence; revision history DB is not aware of that modification and doesn't match device DB.

Conclusion: -- Revision DB does match FortiGate. -- No changes were installed to FortiGate yet. -- Device DB doesn't match Revision DB. -- No changes were done on FortiGate (auto-update) but configuration was retrieved instead

After an Auto-Update or Retrieve: device database = latest revision = FGT

Then after a manual change on FMG end (but no install yet): latest revision = FGT (still) but now device database has been modified (is different).

After reverting to a previous revision in revision history: device database = reverted revision != FGT

Topic 2, Main Questions Pool B

Question 36

Report
Export
Collapse

Which two statements regarding device management on FortiManager are true? (Choose two.)

A.
FortiGate devices in HA cluster devices are counted as a single device.
A.
FortiGate devices in HA cluster devices are counted as a single device.
Answers
B.
FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.
B.
FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.
Answers
C.
FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
C.
FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
Answers
D.
The maximum number of managed devices for each ADOM is 500.
D.
The maximum number of managed devices for each ADOM is 500.
Answers
Suggested answer: A, C

Question 37

Report
Export
Collapse

Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

A.
The Security Fabric license, group name and password are required for the FortiManager Security Fabric integration
A.
The Security Fabric license, group name and password are required for the FortiManager Security Fabric integration
Answers
B.
The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
B.
The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
Answers
C.
The Security Fabric settings are part of the device level settings
C.
The Security Fabric settings are part of the device level settings
Answers
D.
The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
D.
The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
Answers
Suggested answer: C, D

Question 38

Report
Export
Collapse

Refer to the exhibit.

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

A.
You must install these changes using the Install Wizard to a managed device
A.
You must install these changes using the Install Wizard to a managed device
Answers
B.
The successful execution of a script on the Device Database will create a new revision history
B.
The successful execution of a script on the Device Database will create a new revision history
Answers
C.
The script history will show successful installation of the script on the remote FortiGate
C.
The script history will show successful installation of the script on the remote FortiGate
Answers
D.
The Device Settings Status will be tagged as Modified
D.
The Device Settings Status will be tagged as Modified
Answers
Suggested answer: A, D

Question 39

Report
Export
Collapse

Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.

Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)

A.
The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
A.
The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
Answers
B.
The administrator profile does not have full access privileges like the Super_User profile.
B.
The administrator profile does not have full access privileges like the Super_User profile.
Answers
C.
The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
C.
The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
Answers
D.
FortiAnalyzer features are not enabled on FortiManager.
D.
FortiAnalyzer features are not enabled on FortiManager.
Answers
Suggested answer: B, D

Question 40

Report
Export
Collapse

Which two items are included in the FortiManager backup? (Choose two.)

A.
FortiGuard database
A.
FortiGuard database
Answers
B.
Global database
B.
Global database
Answers
C.
Logs
C.
Logs
Answers
D.
All devices
D.
All devices
Answers
Suggested answer: B, D
Total 103 questions
Go to page: of 11
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms