1. Home
  2. Fortinet
  3. NSE5_FAZ-7.0

Fortinet NSE 5 - FortiAnalyzer 7.0

Exam Details

  • Exam Code
    :NSE5_FAZ-7.0
  • Exam Name
    :Fortinet NSE 5 - FortiAnalyzer 7.0
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :114 Q&As
  • Last Updated
    :Jun 17, 2025

Fortinet Fortinet Certifications NSE5_FAZ-7.0 Questions & Answers

  • Question 81:

    An administrator has configured the following settings:

    config system fortiview settings set resolve-ip enable end

    What is the significance of executing this command?

    A. Use this command only if the source IP addresses are not resolved on FortiGate.

    B. It resolves the source and destination IP addresses to a hostname in FortiView on FortiAnalyzer.

    C. You must configure local DNS servers on FortiGate for this command to resolve IP addresses on Forti Analyzer.

    D. It resolves the destination IP address to a hostname in FortiView on FortiAnalyzer.

  • Question 82:

    For which two purposes would you use the command set log checksum? (Choose two.)

    A. To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server

    B. To prevent log modification or tampering

    C. To encrypt log communications

    D. To send an identical set of logs to a second logging server

  • Question 83:

    What can the CLI command # diagnose test application oftpd 3 help you to determine?

    A. What devices and IP addresses are connecting to FortiAnalyzer

    B. What logs, if any, are reaching FortiAnalyzer

    C. What ADOMs are enabled and configured

    D. What devices are registered and unregistered

  • Question 84:

    What can you do on FortiAnalyzer to restrict administrative access from specific locations?

    A. Configure trusted hosts for that administrator.

    B. Enable geo-location services on accessible interface.

    C. Configure two-factor authentication with a remote RADIUS server.

    D. Configure an ADOM for respective location.

  • Question 85:

    What does the disk status Degraded mean for RAID management?

    A. One or more drives are missing from the FortiAnalyzer unit. The drive is no longer available to the operating system.

    B. The FortiAnalyzer device is writing to all the hard drives on the device in order to make the array fault tolerant.

    C. The FortiAnalyzer device is writing data to a newly added hard drive in order to restore the hard drive to an optimal state.

    D. The hard driveiIs no longer being used by the RAID controller

  • Question 86:

    How can you configure FortiAnalyzer to permit administrator logins from only specific locations?

    A. Use static routes

    B. Use administrative profiles

    C. Use trusted hosts

    D. Use secure protocols

  • Question 87:

    Which two statements are true regarding high availability (HA) on FortiAnalyzer? (Choose two.)

    A. FortiAnalyzer HA can function without VRRP, and VRRP is required only if you have more than two FortiAnalyzer devices in a cluster.

    B. FortiAnalyzer HA supports synchronization of logs as well as some system and configuration settings.

    C. All devices in a FortiAnalyzer HA cluster must run in the same operation mode: analyzer or collector.

    D. FortiAnalyzer HA implementation is supported by many public cloud infrastructures such as AWS, Microsoft Azure, and Google Cloud.

    E. FortiAnalyzer HA implementation is supported by all cloud providers.

  • Question 88:

    In order for FortiAnalyzer to collect logs from a FortiGate device, what configuration is required? (Choose two.)

    A. Remote logging must be enabled on FortiGate

    B. Log encryption must be enabled

    C. ADOMs must be enabled

    D. FortiGate must be registered with FortiAnalyzer

  • Question 89:

    Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?

    A. To properly correlate logs

    B. To use real-time forwarding

    C. To resolve host names

    D. To improve DNS response times

  • Question 90:

    After you have moved a registered logging device out of one ADOM and into a new ADOM, what is the purpose of running the following CLI command? execute sql-local rebuild-adom

    A. To reset the disk quota enforcement to default

    B. To remove the analytics logs of the device from the old database

    C. To migrate the archive logs to the new ADOM

    D. To populate the new ADOM with analytical logs for the moved device, so you can run reports

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5_FAZ-7.0 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.