Fortinet NSE5_FAZ-7.0 Online Practice Questions and Exam Preparation

Fortinet NSE5_FAZ-7.0 Online Questions & Answers

• Question 31:

  Which daemon is responsible for enforcing raw log file size?

  A. logfiled
  B. oftpd
  C. sqlplugind
  D. miglogd
  A. logfiled

• Question 32:

  What is the purpose of output variables?

  A. To store playbook execution statistics
  B. To use the output of the previous task as the input of the current task
  C. To display details of the connectors used by a playbook
  D. To save all the task settings when a playbook is exported
  A. To store playbook execution statistics

• Question 33:

  Refer to the exhibit.

  

  Laptopt is used by several administrators to manage FortiAnalyzer. You want to configure a generic text filter that matches all login attempts to the web interface generated by any user other than "admin" and coming from Laptop1: Which filter will achieve the desired result?

  A. operation-login and performed_on=="GUI(10.1.1.100)" and user!=admin
  B. operation-login and srcip==10.1.1.100 and dstip==10.1.1.210 and user==admin
  C. operation-login and dstip==10.1.1.210 and userl-admin
  D. operation-login and performed_on=="GUI(10.1.1.210)' and user!=admin
  D. operation-login and performed_on=="GUI(10.1.1.210)' and user!=admin

• Question 34:

  Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)

  A. Virtual domains
  B. Administrative access profiles
  C. Trusted hosts
  D. Security Fabric
  B. Administrative access profiles
  C. Trusted hosts

  ---

  Reference: https://docs2.fortinet.com/document/fortianalyzer/6.0.0/administration- guide/219292/administrator-profiles https://docs2.fortinet.com/document/fortianalyzer/6.0.0/administration- guide/581222/trusted-hosts

• Question 35:

  What can you do on FortiAnalyzer to restrict administrative access from specific locations?

  A. Configure trusted hosts for that administrator.
  B. Enable geo-location services on accessible interface.
  C. Configure two-factor authentication with a remote RADIUS server.
  D. Configure an ADOM for respective location.
  A. Configure trusted hosts for that administrator.

  ---

  Reference: https://docs.fortinet.com/document/fortigate/6.2.0/hardening-your- fortigate/582009/system-administrator-best-practices

• Question 36:

  An administrator has configured the following settings:

  config system global set log-checksum md5-auth end

  What is the significance of executing this command?

  A. This command records the log file MD5 hash value.
  B. This command records passwords in log files and encrypts them.
  C. This command encrypts log transfer between FortiAnalyzer and other devices.
  D. This command records the log file MD5 hash value and authentication code.
  A. This command records the log file MD5 hash value.

  ---

  Reference: https://docs.fortinet.com/document/fortianalyzer/6.4.6/administration- guide/410387/appendix-b-log-integrity-and-secure-log-transfer

• Question 37:

  Which two statements are true regarding ADOM modes? (Choose two.)

  A. You can only change ADOM modes through CLI.
  B. In normal mode, the disk quota of the ADOM is fixed and cannot be modified, but in advance mode, the disk quota of the ADOM is flexible because new devices are added to the ADOM.
  C. In an advanced mode ADOM. you can assign FortiGate VDOMs from a single FortiGate device to multiple FortiAnalyzer ADOMs.
  D. Normal mode is the default ADOM mode.
  C. In an advanced mode ADOM. you can assign FortiGate VDOMs from a single FortiGate device to multiple FortiAnalyzer ADOMs.
  D. Normal mode is the default ADOM mode.

  ---

  Reference: https://help.fortinet.com/fa/faz50hlp/56/5-6-1/FMG- FAZ/0800_ADOMs/0400_ADOM%20Device%20Modes.htm

• Question 38:

  How do you restrict an administrator's access to a subset of your organization's ADOMs?

  A. Set the ADOM mode to Advanced
  B. Assign the ADOMs to the administrator's account
  C. Configure trusted hosts
  D. Assign the default Super_User administrator profile
  B. Assign the ADOMs to the administrator's account

  ---

  https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration- guide/717578/assigning-administrators-to-an-adom

• Question 39:

  Refer to the exhibit.

  

  The exhibit shows "remoteservergroup" is an authentication server group with LDAP and RADIUS servers.

  Which two statements express the significance of enabling "Match all users on remote server" when configuring a new administrator? (Choose two.)

  A. It creates a wildcard administrator using LDAP and RADIUS servers.
  B. Administrator can log in to FortiAnalyzer using their credentials on remote servers LDAP and RADIUS.
  C. Use remoteadmin from LDAP and RADIUS servers will be able to log in to FortiAnalyzer at anytime.
  D. It allows administrators to use two-factor authentication.
  A. It creates a wildcard administrator using LDAP and RADIUS servers.
  B. Administrator can log in to FortiAnalyzer using their credentials on remote servers LDAP and RADIUS.

  ---

  Reference: https://docs.fortinet.com/document/fortimanager/7.0.1/administration- guide/858351/creating-administrators

• Question 40:

  An administrator has moved FortiGate A from the root ADOM to ADOM1. Which two statements are true regarding logs? (Choose two.)

  A. Analytics logs will be moved to ADOM1 from the root ADOM automatically.
  B. Archived logs will be moved to ADOM1 from the root ADOM automatically.
  C. Logs will be presented in both ADOMs immediately after the move.
  D. Analytics logs will be moved to ADOM1 from the root ADOM after you rebuild the ADOM1 SQL database.
  B. Archived logs will be moved to ADOM1 from the root ADOM automatically.
  D. Analytics logs will be moved to ADOM1 from the root ADOM after you rebuild the ADOM1 SQL database.

  ---

  Reference: https://community.fortinet.com/t5/Fortinet-Forum/FW-Migration-between- ADOMs/m-p/32683?m=158008