Fortinet NSE5_FAZ-7.2 Exam Practice Test Instant Access

Question 1

By default, what happens when a log file reaches its maximum file size?

AFortiAnalyzer overwrites the log files.

BFortiAnalyzer stops logging.

CFortiAnalyzer rolls the active log by renaming the file.

DFortiAnalyzer forwards logs to syslog.

Answer : C

Question 2

What is the recommended method of expanding disk space on a FortiAnalyzer VM?

AFrom the VM host manager, add an additional virtual disk and use the #execute lvm extend <disk number> command to expand the storage

BFrom the VM host manager, expand the size of the existing virtual disk

CFrom the VM host manager, expand the size of the existing virtual disk and use the # execute format disk command to reformat the disk

DFrom the VM host manager, add an additional virtual disk and rebuild your RAID array

Answer : A

https://kb.fortinet.com/kb/documentLink.do?externalID=FD40848

Question 3

Refer to the exhibit.

The exhibit shows ''remoteservergroup'' is an authentication server group with LDAP and RADIUS servers.

Which two statements express the significance of enabling ''Match all users on remote server'' when configuring a new administrator? (Choose two.)

AIt creates a wildcard administrator using LDAP and RADIUS servers.

BAdministrator can log in to FortiAnalyzer using their credentials on remote servers LDAP and RADIUS.

CUse remoteadmin from LDAP and RADIUS servers will be able to log in to FortiAnalyzer at anytime.

DIt allows administrators to use two-factor authentication.

Answer : A, B

Question 4

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

AThe total disk space is insufficient and you need to add other disk.

BCPU resources are too high.

CThe ADOM disk quota is set too low based on log rates.

DLogs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.

Answer : C

https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG FAZ/1100_Storage/0017_Deleted%20device%20logs.htm

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/87802/automatic-deletion

Question 5

What is the main purpose of using an NTP server on FortiAnalyzer and all of its registered devices?

ALog correlation

BHost name resolution

CLog collection

DReal-time forwarding

Answer : A

Question 6

Which daemon is responsible for enforcing the log file size?

Asqlplugind

Blogfiled

Cmiglogd

Dofrpd

Answer : B

FortiAnalyzer_7.0_Study_Guide-Online.pdf page 121: The logfiled process enforces the log file size and is also responsible for disk quota enforcement by monitoring the other processes.

Question 7

What is the purpose of a dataset query in FortiAnalyzer?

AIt sorts log data into tables

BIt extracts the database schema

CIt retrieves log data from the database

DIt injects log data into the database

Answer : C

Fortinet NSE5_FAZ-7.2 Fortinet NSE 5 - FortiAnalyzer 7.2 Exam Practice Test