Fortinet NSE5_FCT-7.0 Exam Questions Instant Access

Question 1

A FortiClient EMS administrator has enabled the compliance rule for the sales department. Which Fortinet device will enforce compliance with dynamic access control?

AFortiClient

BFortiClient EMS

CFortiGate

DFortiAnalyzer

Answer : C

Question 2

Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which application is blocked by the application firewall?

ATwitter

BFacebook

CInternet Explorer

DFirefox

Answer : A

the Twitter was Blocked see line 5 in the exibit

Question 3

Which two statements are true about ZTNA? (Choose two.)

AZTNA provides role-based access

BZTNA manages access for remote users only

CZTNA manages access through the client only

DZTNA provides a security posture check

Answer : A, D

Question 4

An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate. What is the prerequisite to get FortiClient EMS to connect to FortiGate successfully?

ARevoke and update the FortiClient EMS root CA.

BRevoke and update the FortiClient client certificate on EMS.

CImport and verify the FortiClient client certificate on FortiGate.

DImport and verify the FortiClient EMS root CA certificate on FortiGate

Answer : D

The FortiClient EMS root CA certificate needs to be imported and verified on the FortiGate appliance. This allows the FortiGate to trust the certificate authority (CA) used by FortiClient EMS for issuing client certificates. By importing and verifying the root CA certificate, FortiGate can establish a secure connection with FortiClient EMS and validate the authenticity of the client certificates presented during the connection process.

Question 5

Refer to the exhibits.

Which shows the configuration of endpoint policies.

Based on the configuration, what will happen when someone logs in with the user account student on an endpoint in the trainingAD domain?

AFortiClient EMS will assign the Sales policy

BFortiClient EMS will assign the Training policy

CFortiClient EMS will assign the Default policy

DFortiClient EMS will assign the Training policy for on-fabric endpoints and the Sales policy for the off-fabric endpoint

Answer : B

Question 6

An administrator installs FortiClient EMS in the enterprise.

Which component is responsible for enforcing protection and checking security posture?

AFortiClient vulnerability scan

BFortiClient EMS tags

CFortiClient EMS

DFortiClient

Answer : D

FortiClient is the component that is responsible for enforcing protection and checking security posture on the endpoints. FortiClient provides features such as antivirus, web filtering, firewall, vulnerability scan, and VPN. FortiClient EMS is the management server that centrally configures and monitors FortiClient endpoints. FortiClient EMS tags are used to group endpoints based on criteria such as OS, IP address, or domain. FortiClient vulnerability scan is a feature that detects and fixes security issues on the endpoints.Reference:=

FortiClient EMS

Compliance with EMS and FortiOS

Question 7

Refer to the exhibit.

Based on the settings shown in the exhibit what action will FortiClient take when it detects that a user is trying to download an infected file?

ABlocks the infected files as it is downloading

BQuarantines the infected files and logs all access attempts

CSends the infected file to FortiGuard for analysis

DAllows the infected file to download without scan

Answer : D

Block Malicious Website has nothing to do with infected files. Since Realtime Protection is OFF, it will be allowed without being scanned.

Fortinet NSE 5 - FortiClient EMS 7.0 NSE5_FCT-7.0 Exam Questions