Fortinet Fortinet Certifications NSE5_FMG-7.2 Questions & Answers

• Question 71:

  Refer to the exhibit.

  

  According to the error message why is FortiManager failing to add the FortiAnalyzer device?

  A. The administrator must turn off the Use Legacy Device login and add the FortiAnalyzer device to the same network as Forti-Manager

  B. The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface

  C. The administrator must use the Add Model Device section and discover the FortiAnalyzer device

  D. The administrator must use the correct user name and password of the FortiAnalyzer device

  Correct Answer: A

• Question 72:

  Which three settings are the factory default settings on FortiManager? (Choose three.)

  A. The administrative domain is disabled.

  B. The Port1 interface IP address is 192.168.1.99/24.

  C. Management Extension applications are enabled.

  D. The FortiManager setup wizard is disabled.

  E. FortiAnalvzer features are disabled.

  Correct Answer: ABE

• Question 73:

  Which of the following statements are true regarding reverting to previous revision version from the revision history? (Choose two.)

  A. To push these changes to a managed device, it required an install operation to the managed FortiGate.

  B. Reverting to a previous revision history will generate a new versionIDand remove all other history versions.

  C. Reverting to a previous revision history will tag the device settings status asAuto-Update.

  D. It will modify device-level database

  Correct Answer: AD

• Question 74:

  Refer to the exhibit.

  

  Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?

  A. FortiManager ignored the firewall service category General but created a new service category in its database.

  B. FortiManager ignored the firewall service category general and deleted the duplicate value In Its database

  C. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.

  D. FortiManager ignored the firewall service category General and did not update Its database with the value

  Correct Answer: D

• Question 75:

  View the following exhibit.

  

  An administrator has created a firewall address object, Training, which is used in the Local-FortiGate policy package. When the install operation is performed, which IP Netmask will be installed on the Local-FortiGate, for the Training firewall address object?

  A. 10.0.1.0/24

  B. It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values

  C. 192.168.0.1/24

  D. Local-FortiGate will automatically choose an IP Network based on its network interface settings.

  Correct Answer: A

• Question 76:

  Which of the following statements are true regarding VPN Manager? (Choose three.)

  A. VPN Manager must be enabled on a per ADOM basis.

  B. VPN Manager automatically adds newly-registered devices to a VPN community.

  C. VPN Manager can install common IPsec VPN settings on multiple FortiGate devices at the same time.

  D. Common IPsec settings need to be configured only once in a VPN Community for all managed gateways.

  E. VPN Manager automatically creates all the necessary firewall policies for traffic to be tunneled by IPsec.

  Correct Answer: ACD

• Question 77:

  Which of the following statements are true regarding schedule backup of FortiManager? (Choose two.)

  A. Backs up all devices and the FortiGuard database.

  B. Does not back up firmware images saved on FortiManager

  C. Supports FTP, SCP, and SFTP

  D. Can be configured from the CLI and GUI

  Correct Answer: BC

• Question 78:

  Refer to the exhibit.

  

  Which statement is true about the FortiManager ADOM policy tab based on the API request?

  A. The API command has enabled both central NAT and interface policy on the policy tab.

  B. The API command has requested the policy tab permissions information only.

  C. The API command has failed when requesting policy tab permissions information.

  D. The API command has applied to customer with ID: 200.

  Correct Answer: A

• Question 79:

  Refer to the exhibit.

  

  A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?

  A. The administrator had restored the FortiManager configuration file

  B. The administrator must refresh both devices to restore connectivity

  C. FortiManager test internet connectivity therefore, both devices appear to be down

  D. The administrator can reclaim the FGFM tunnel to get both devices online

  Correct Answer: C

• Question 80:

  Refer to the exhibit.

  

  Given the configuration shown in the exhibit, what can you conclude from the installation targets m the Install On column? (Choose two)

  A. Policy seq # 2 will not be installed on the Local-FortiGate root VDOM because there is no root VDOM in the Installation Target

  B. Policy seq # 3 will be installed on all managed devices and VDOMs that are listed under Installation Targets

  C. Policy seq # 1 will be installed on the Remoto-FortiGate root[NAT] and Student[NAT] VDOMs only

  D. Policy 3 will be installed on all FortiGate devices and vdom belongs to the ADOM

  E. Policy seq # 3 will be skipped because no installation targets are specified

  Correct Answer: BC