Fortinet NSE5_FAZ-7.0 Exam Practice Test Instant Access

Question 1

What is the purpose of output variables?

ATo store playbook execution statistics

BTo use the output of the previous task as the input of the current task

CTo display details of the connectors used by a playbook

DTo save all the task settings when a playbook is exported
FortiAnalyzer_7.0_Study_Guide-Online.pdf page 242: Output variables allow you to use the output from a preceding task as an input to the current task.
'Output variables allow you to use the output from a preceding task as an input to the current task.' FortiAnalyzer_7.0_Study_Guide-Online page 242

Answer : B

Question 2

Which statement is true when you are upgrading the firmware on an HA cluster made up of two FortiAnalyzer devices?

AFirst, upgrade the secondary device, and then upgrade the primary device.

BBoth FortiAnalyzer devices will be upgraded at the same time.

CYou can enable uninterruptible-upgrade so that the normal FortiAnalyzer operations are not interrupted while the cluster firmware upgrades.

DYou can perform the firmware upgrade using only a console connection.
FortiAnalyzer_7.0_Study_Guide-Online.pdf page 64: To upgrade FortiAnalyzer HA cluster firmware:
1. Log in to each secondary device.
2. Upgrade the firmware of all secondary devices.
3. Wait for the upgrades to complete and verify that all secondary devices joined the cluster.
4. Verify that logs on all secondary devices are synchronized with the primary device.
5. Upgrade the primary device.
https://docs.fortinet.com/document/fortianalyzer/7.2.0/upgrade-guide/262607/upgrading-fortianalyzer-firmware

Answer : A

Question 3

What does the disk status Degraded mean for RAID management?

AOne or more drives are missing from the FortiAnalyzer unit. The drive is no longer available to the operating system.

BThe FortiAnalyzer device is writing to all the hard drives on the device in order to make the array fault tolerant.

CThe FortiAnalyzer device is writing data to a newly added hard drive in order to restore the hard drive to an optimal state.

DThe hard driveiIs no longer being used by the RAID controller

Answer : D

Question 4

Which two statements are true regarding fabric connectors? (Choose two.)

AConfiguring fabric connectors to send notification to ITSM platform upon incident creation Is more efficient than third-party information from the FortiAnalyzer API.

BFabric connectors allow to save storage costs and improve redundancy.

CStorage connector service does not require a separate license to send logs to cloud platform.

DCloud-Out connections allow you to send real-time logs to pubic cloud accounts like Amazon S3, Azure Blob , and Google Cloud.

Answer : A, D

Question 5

Which two statement are true regardless initial Logs sync and Log Data Sync for Ha on FortiAnalyzer?

ABy default, Log Data Sync is disabled on all backup devise.

BLog Data Sync provides real-time log synchronization to all backup devices.

CWith initial Logs Sync, when you add a unit to an HA cluster, the primary device synchronizes its logs with the backup device.

DWhen Logs Data Sync is turned on, the backup device will reboot and then rebuilt the log database with the synchronized logs.

Answer : C, D

Question 6

What can you do on FortiAnalyzer to restrict administrative access from specific locations?

AConfigure trusted hosts for that administrator.

BEnable geo-location services on accessible interface.

CConfigure two-factor authentication with a remote RADIUS server.

DConfigure an ADOM for respective location.

Answer : A

Question 7

In Log View, you can use the Chart Builder feature to build a dataset and chart based on the filtered search results.

Similarly, which feature you can use for FortiView?

AExport to Report Chart

BExport to PDF

CExport to Chart Builder

DExport to Custom Chart

Answer : A

Fortinet NSE5_FAZ-7.0 Fortinet NSE 5 - FortiAnalyzer 7.0 Exam Practice Test

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7