Fortinet FCP_FAZ_AD-7.4 Exam Practice Test Instant Access

Question 1

For which two purposes would you use the command set log checksum? (Choose two.)

ATo help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server

BTo prevent log modification or tampering

CTo encrypt log communications

DTo send an identical set of logs to a second logging server

Answer : A, B

To prevent log modification or tampering: The set log-checksum command with options like md5 or sha1 calculates a checksum value for the log data. This checksum acts as a digital signature, allowing FortiAnalyzer to verify the integrity of the logs and detect any unauthorized modifications.

To protect log data from man-in-the-middle attacks: By using checksums, FortiAnalyzer can ensure that the logs received have not been altered in transit during a man-in-the-middle attack. If the checksum of the received logs doesn't match the expected value, it indicates potential tampering.

FortiAnalyzer_7.0_Study_Guide-Online page 149

Question 2

Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)

AVirtual domains

BAdministrative access profiles

CTrusted hosts

DSecurity Fabric

Answer : B, C

https://docs2.fortinet.com/document/fortianalyzer/6.0.0/administration-guide/581222/trusted-hosts

Question 3

View the exhibit.

Why is the total quota less than the total system storage?

A3.6% of the system storage is already being used.

BSome space is reserved for system use, such as storage of compression files, upload files, and temporary report files

CThe oftpd process has not archived the logs yet

DThe logfiled process is just estimating the total quota

Answer : B

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/368682/disk-space-allocation

Question 4

What is the purpose of trigger variables?

ATo display statistics about the playbook runtime

BTo use information from the trigger to filter the action in a task

CTo provide the trigger information to make the playbook start running

DTo store the start times of playbooks with On_Schedule triggers

Answer : A

Question 5

View the exhibit.

What does the data point at 14:35 tell you?

AFortiAnalyzer is dropping logs.

BFortiAnalyzer is indexing logs faster than logs are being received.

CFortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed.

DThe sqlplugind daemon is ahead in indexing by one log.

Answer : B

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vs-receive-rate-widget

Question 6

If you upgrade your FortiAnalyzer firmware, what report elements can be affected?

AOutput profiles

BReport settings

CReport scheduling

DCustom datasets

Answer : D

Question 7

What is the main purpose of using an NTP server on FortiAnalyzer and all of its registered devices?

ALog correlation

BHost name resolution

CLog collection

DReal-time forwarding

Answer : A

Fortinet FCP_FAZ_AD-7.4 FCP - FortiAnalyzer 7.4 Administrator Exam Practice Test