Fortinet NSE5_FCT-7.0 Exam Practice Test Instant Access

Question 1

Which component or device shares device status information through ZTNA telemetry?

AFortiClient

BFortiGate

CFortiGate Access Proxy

DFortiClient EMS

Answer : A

FortiClient communicates directly with FortiClient EMS to continuously share device status information through ZTNA telemetry.

Question 2

Which three types of antivirus scans are available on FortiClient? (Choose three )

AProxy scan

BFull scan

CCustom scan

DFlow scan

EQuick scan

Answer : B, C, E

Question 3

An administrator is required to maintain a software inventory on the endpoints. without showing the feature on the FortiClient dashboard What must the administrator do to achieve this requirement?

AThe administrator must use default endpoint profile

BThe administrator must not select the vulnerability scan feature in the deployment package.

CThe administrator must select the vulnerability scan feature in the deployment package, but disable the feature on the endpoint profile

DThe administrator must click the hide icon on the vulnerability scan tab

Answer : D

Question 4

Refer to the exhibit.

An administrator has restored the modified XML configuration file to FortiClient and sees the error shown in the exhibit.

Based on the XML settings shown in the exhibit, what must the administrator do to resolve the issue with the XML configuration file?

AThe administrator must resolve the XML syntax error.

BThe administrator must use a password to decrypt the file

CThe administrator must change the file size

DThe administrator must save the file as FortiClient-config conf.

Answer : A

missing </connections> at the bottom

Question 5

When site categories are disabled in FortiClient webfilter and antivirus (malicious websites), which feature can be used to protect the endpoint from malicious web access?

AWeb exclusion list

BReal-time protection list

CBlock malicious websites on antivirus

DFortiSandbox URL list

Answer : A

Site Categories enables site categories from FortiGuard. When site categories are disabled, FortiClient is protected by the exclusion list. For all categories below, you can configure an action for the entire site category by selecting either Block, Warn, Allow, or Monitor. Each site category is shown on this slide.

Question 6

Which two statements are true about ZTNA? (Choose two.)

AZTNA provides role-based access

BZTNA manages access for remote users only

CZTNA manages access through the client only

DZTNA provides a security posture check

Answer : A, D

Question 7

Why does FortiGate need the root CA certificate of FortiClient EMS?

ATo sign FortiClient CSR requests

BTo revoke FortiClient client certificates

CTo trust certificates issued by FortiClient EMS

DTo update FortiClient client certificates

Answer : C

FortiGate needs the root CA (Certificate Authority) certificate of FortiClient EMS in order to trust and validate certificates that are issued by FortiClient EMS. The root CA certificate acts as a trusted authority that verifies the authenticity and integrity of certificates issued by FortiClient EMS.

Fortinet NSE5_FCT-7.0 Fortinet NSE 5 - FortiClient EMS 7.0 Exam Practice Test