1. Home
  2. Fortinet
  3. NSE5_FAZ-7.2

Fortinet NSE5_FAZ-7.2 Online Practice Questions and Exam Preparation

NSE5_FAZ-7.2 Exam Details

  • Exam Code
    :NSE5_FAZ-7.2
  • Exam Name
    :Fortinet NSE 5 - FortiAnalyzer 7.2
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :137 Q&As
  • Last Updated
    :May 25, 2026

Fortinet NSE5_FAZ-7.2 Online Questions & Answers

  • Question 31:

    Refer to the exhibit.

    Laptop1 is used by several administrators to manage FortiAnalyzer. You want to configure a generic text filter that matches all login attempts to the web interface generated by any user other than "admin", and coming from Laptop1. Which filter will achieve the desired result?

    A. operation-login and dstip==10.1.1.210 and user!-admin
    B. operation-login and srcip==10.1.1.100 and dstip==10.1.1.210 and user==admin
    C. operation-login and performed_on=="GUI(10.1.1.210)" and user!=admin
    D. operation-login and performed_on=="GUI(10.1.1.100)" and user!=admin

  • Question 32:

    Which statement describes a dataset in FortiAnalyzer?

    A. They determine what data is retrieved from the database.
    B. They provide the layout used for reports.
    C. They are used to set the data included in templates.
    D. They define the chart types to be used in reports.

  • Question 33:

    Which SQL query is in the correct order to query the database in the FortiAnslyzer?

    A. SELECT devid FROM Slog GROOP BY devid WHERE * user' =* USERl'
    B. SELECT devid WHERE 'u3er'='USERl' FROM $ log GROUP BY devid
    C. SELECT devid FROM Slog- WHERE *user' =' USERl' GROUP BY devid
    D. FROM Slog WHERE 'user* =' USERl' SELECT devid GROUP BY devid

  • Question 34:

    What are two advantages of setting up fabric ADOM? (Choose two.)

    A. It can be used for fast data processing and log correlation
    B. It can be used to facilitate communication between devices in same Security Fabric
    C. It can include all Fortinet devices that are part of the same Security Fabric
    D. It can include only FortiGate devices that are part of the same Security Fabric

  • Question 35:

    You have recently grouped multiple FortiGate devices into a single ADOM.System Settings>Storage Info shows the quota used. What does the disk quota refer to?

    A. The maximum disk utilization for each device in the ADOM
    B. The maximum disk utilization for the FortiAnalyzer model
    C. The maximum disk utilization for the ADOM type
    D. The maximum disk utilization for all devices in the ADOM

  • Question 36:

    What is Log Insert Lag Time on FortiAnalyzer?

    A. The number of times in the logs where end users experienced slowness while accessing resources.
    B. The amount of lag time that occurs when the administrator is rebuilding the ADOM database.
    C. The amount of time that passes between the time a log was received and when it was indexed on FortiAnalyzer.
    D. The amount of time FortiAnalyzer takes to receive logs from a registered device

  • Question 37:

    Refer to the exhibit.

    What is the purpose of using the Chart Builder feature on FortiAnalyzer?

    A. In Log View, this feature allows you to build a dataset and chart automatically, based on the filtered search results.
    B. In Log View, this feature allows you to build a chart and chart automatically, on the top 100 log entries.
    C. This feature allows you to build a chart under FortiView.
    D. You can add charts to generated reports using this feature.

  • Question 38:

    Refer to the exhibits.

    How many events will be added to the incident created after running this playbook?

    A. Ten events will be added.
    B. No events will be added.
    C. Five events will be added.
    D. Thirteen events will be added.

  • Question 39:

    In FortiAnalyzer's FormView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IPs, without introducing any additional performance impact to FortiAnalyzer?

    A. Configure local DNS servers on FortiAnalyzer
    B. Resolve IPs on FortiGate
    C. Configure # set resolve-ip enable in the system FortiView settings
    D. Resolve IPs on a per-ADOM basis to reduce delay on FortiView while IPs resolve

  • Question 40:

    What statements are true regarding FortiAnalyzer 's treatment of high availability (HA) dusters? (Choose two)

    A. FortiAnalyzer distinguishes different devices by their serial number.
    B. FortiAnalyzer receives logs from d devices in a duster.
    C. FortiAnalyzer receives bgs only from the primary device in the cluster.
    D. FortiAnalyzer only needs to know (he serial number of the primary device in the cluster-it automaticaly discovers the other devices.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE5_FAZ-7.2 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.