Fortinet FCP_FMG_AD-7.4 Exam Practice Test Instant Access

Question 1

When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?

AFortiManager will not push the CLI commands as part of the installation that will cause the tunnel to go down.

BAfter 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.

CFortiManager will revert and install a previous configuration revision on the managed FortiGate.

DFortiGate will reject the CLI commands that will cause the tunnel to go down.

Answer : B

Question 2

Refer to the exhibit.

Given the configuration shown in the exhibit, what are two results from this configuration? (Choose two.)

AUnlocking an ADOM will submit configuration changes automatically to the approval administrator.

BUngraceful closed sessions will keep the ADOM in a locked state until the administrator session times out.

CUnlocking an ADOM will install configuration changes automatically on managed devices.

DThe same administrator can lock more than one ADOM at the same time.

Answer : B, D

Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out.

In normal workspace mode, if an administrator closes the session without unlocking the ADOM properly, the ADOM remains locked until the session times out.

The same administrator can lock more than one ADOM at the same time.

In normal workspace mode, an administrator can lock more than one ADOM simultaneously for editing. Each ADOM operates independently in terms of locking and editing.

Question 3

You are moving managed FortiGate devices from one ADOM to a new ADOM.

Which statement correctly describes the expected result?

AThe shared device settings will be installed automatically.

BThe shared policy package will not be moved to the new ADOM automatically.

CAny unused objects from a previous ADOM are moved to the new ADOM automatically.

DPolicy packages will be imported into the new ADOM automatically.

Answer : B

When you move a device to a new ADOM, the shared policy packages do not transfer automatically. You would need to manually configure or assign the necessary policy packages in the new ADOM.

Question 4

Refer to the exhibit.

A service provider administrator has assigned a global policy package to a managed customer ADOM named My_ADOM, which has four policy packages. The customer administrator has access only to My_ADOM.

How can the customer or service provider administrators remove the global header policy from the policy package named Shared_Package?

AThe service provider administrator can unassign the global policy from My_ADOM.

BThe customer administrator can unassign the global policy from My_ADOM.

CThe customer administrator can unassign the policy by locking My_ADOM.

DThe service provider administrator can unassign the policy from the global ADOM.

Answer : D

Question 5

When using the FortiManager JSON API, what is the purpose of the session ID received after successful authentication?

AIt is used to identify the FortiManager metadata on the client.

BIt includes a hash to check the integrity of the JSON response sent by FortiManager.

CIt contains information about the HTTP request method used.

DIt serves as an authentication token for subsequent API requests.

Answer : D

The session ID is used to authenticate the client for further requests, ensuring that subsequent API calls are made by an authenticated user.

Question 6

Which two statements about the integrity of databases on FortiManager are correct? (Choose two.)

AThe diagnose dvm check-integrity command attempts to fix a corrupted file system.

BScheduled backups run database integrity commands automatically.

CNot following the correct upgrade path may cause inconsistencies in the databases.

DYou should fix all database integrity issues before performing a backup.

EThe diagnose cdb check adom-integrity command can correct issues related to looked devices.

Answer : B, C

Question 7

Exhibit.

Which two statements about the output are true? (Choose two.)

AThe latest revision history for the managed FortiGate does not match the device-level database.

BConfiguration changes have been installed on FortiGate, which means the FortiGate configuration has been changed.

CConfiguration changes directly made on FortiGate have been automatically updated to the device-level database.

DThe latest revision history for the managed FortiGate does match the FortiGate running configuration.

Answer : A, D

Fortinet FCP_FMG_AD-7.4 FCP - FortiManager 7.4 Administrator Exam Practice Test