Fortinet NSE5_FAZ-7.2 Exam Practice Test Instant Access

Question 1

An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email.

What could be the problem?

AFortinet is assigned the Standard_ User administrator profile.

BA trusted host is configured.

CADOM mode is configured with Advanced mode.

DFortinet is assigned the Restricted_ User administrator profile.

Answer : A

* Super_User, which, like in FortiGate, provides access to all device and system privileges.

* Standard_User, which provides read and write access to device privileges, but not system privileges.

* Restricted_User, which provides read access only to device privileges, but not system privileges. Access

to the Management extensions is also removed.

* No_Permissions_User, which provides no system or device privileges. Can be used, for example, to

temporarily remove access granted to existing admins.

FortiAnalyzer_7.0_Study_Guide-Online page 42

Question 2

Which two methods can you use to send event notifications when an event occurs that matches a configured

event handler? (Choose two.)

ASMS

BEmail

CSNMP

DIM

Answer : B, C

FortiAnalyzer_Admin_Guide/1800_Events/0200_Event_handlers/0600_Create_event_handlers.htm

Question 3

What are two advantages of setting up fabric ADOM? (Choose two.)

AIt can be used for fast data processing and log correlation

BIt can be used to facilitate communication between devices in same Security Fabric

CIt can include all Fortinet devices that are part of the same Security Fabric

DIt can include only FortiGate devices that are part of the same Security Fabric

Answer : A, C

https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/448471/creating-a-security-fabric-adom

Question 4

On FortiAnalyzer, what is a wildcard administrator account?

AAn account that permits access to members of an LDAP group

BAn account that allows guest access with read-only privileges

CAn account that requires two-factor authentication

DAn account that validates against any user account on a FortiAuthenticator

Answer : A

https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-admin-accounts

Question 5

What statements are true regarding disk log quota? (Choose two)

AThe FortiAnalyzer stops logging once the disk log quota is met.

BThe FortiAnalyzer automatically sets the disk log quota based on the device.

CThe FortiAnalyzer can overwrite the oldest logs or stop logging once the disk log quota is met.

DThe FortiAnalyzer disk log quota is configurable, but has a minimum o 100mb a maximum based on the reserved system space.

Answer : C, D

Question 6

What statements are true regarding FortiAnalyzer 's treatment of high availability (HA) dusters? (Choose two)

AFortiAnalyzer distinguishes different devices by their serial number.

BFortiAnalyzer receives logs from d devices in a duster.

CFortiAnalyzer receives bgs only from the primary device in the cluster.

DFortiAnalyzer only needs to know (he serial number of the primary device in the cluster-it automaticaly discovers the other devices.

Answer : A, B

Question 7

Which two statements are true regarding ADOM modes? (Choose two.)

AYou can only change ADOM modes through CLI.

BIn normal mode, the disk quota of the ADOM is fixed and cannot be modified, but in advance mode, the disk quota of the ADOM is flexible because new devices are added to the ADOM.

CIn an advanced mode ADOM. you can assign FortiGate VDOMs from a single FortiGate device to multiple FortiAnalyzer ADOMs.

DNormal mode is the default ADOM mode.

Answer : C, D

Fortinet NSE 5 - FortiAnalyzer 7.2 NSE5_FAZ-7.2 Exam Practice Test