Fortinet NSE5_FAZ-7.2 Exam Practice Test Instant Access

Question 1

Which two purposes does the auto cache setting on reports serve? (Choose two.)

AIt automatically updates the hcache when new logs arrive.

BIt provides diagnostics on report generation time.

CIt reduces the log insert lag rate.

DIt reduces report generation time.

Answer : A, D

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/384416/how-auto-cache-works

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/86926/enabling-auto-cache

Question 2

Which two constraints can impact the amount of reserved disk space required by FortiAnalyzer? (Choose

two.)

ALicense type

BDisk size

CTotal quota

DRAID level

Answer : B, D

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/368682/disk-space-allocation

Question 3

The admin administrator is failing to register a FortiClient EMS on the FortiAnalyzer device.

What can be the reason for this failure?

AFortiAnalyzer is in an HA cluster.

BADOM mode should be set to advanced, in order to register the FortiClient EMS device.

CADOMs are not enabled on FortiAnalyzer.

DA separate license is required on FortiAnalyzer in order to register the FortiClient EMS device.

Answer : C

Question 4

What is the recommended method of expanding disk space on a FortiAnalyzer VM?

AFrom the VM host manager, add an additional virtual disk and use the #execute lvm extend <disk number> command to expand the storage

BFrom the VM host manager, expand the size of the existing virtual disk

CFrom the VM host manager, expand the size of the existing virtual disk and use the # execute format disk command to reformat the disk

DFrom the VM host manager, add an additional virtual disk and rebuild your RAID array

Answer : A

https://kb.fortinet.com/kb/documentLink.do?externalID=FD40848

Question 5

Which two statements about log forwarding are true? (Choose two.)

AForwarded logs cannot be filtered to match specific criteria.

BLogs are forwarded in real-time only.

CThe client retains a local copy of the logs after forwarding.

DYou can use aggregation mode only with another FortiAnalyzer.

Answer : C, D

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/420493/modes

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/621804/log-forwarding

Question 6

What can the CLI command # diagnose test application oftpd 3 help you to determine?

AWhat devices and IP addresses are connecting to FortiAnalyzer

BWhat logs, if any, are reaching FortiAnalyzer

CWhat ADOMs are enabled and configured

DWhat devices are registered and unregistered

Answer : A

https://docs.fortinet.com/document/fortianalyzer/6.2.5/cli-reference/395556/test#test_application

Question 7

View the exhibit.

What does the data point at 14:35 tell you?

AFortiAnalyzer is dropping logs.

BFortiAnalyzer is indexing logs faster than logs are being received.

CFortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed.

DThe sqlplugind daemon is ahead in indexing by one log.

Answer : B

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vs-receive-rate-widget

Fortinet NSE5_FAZ-7.2 Fortinet NSE 5 - FortiAnalyzer 7.2 Exam Practice Test