Labour Day Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: mxmas70

 
Home > Fortinet > Fortinet Certification > NSE5_FMG-7.2

NSE5_FMG-7.2 Fortinet NSE 5 - FortiManager 7.2 Question and Answers

Question # 4

What will happen if FortiAnalyzer features are enabled on FortiManager?

A.

FortiManager will reboot

B.

FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager

C.

FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices

D.

FortiManager can be used only as a logging device.

Full Access
Question # 5

Which configuration setting for FortiGate is part of a device-level database on FortiManager?

A.

VIP and IP Pools

B.

Firewall policies

C.

Security profiles

D.

Routing

Full Access
Question # 6

An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

A.

When creating a new policy package, the administrator can select the option to assign the global policy

package to the new policy package

B.

When a new policy package is created, the administrator needs to reapply the global policy package to

ADOM1.

C.

When a new policy package is created, the administrator must assign the global policy package from the global ADOM.

D.

When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package.

Full Access
Question # 7

An administrator, Trainer, who is assigned theSuper_Userprofile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.

What can prevent an admin account that hasSuper_Userrights over the device from approving a workflow session?

A.

Trainer is not a part of workflow approval group

B.

Trainer does not have full rights over this ADOM

C.

Trainer must close Student’s workflow session before approving the request

D.

Student, who submitted the workflow session, must first self-approve the request

Full Access
Question # 8

An administrator run the reload failure command:diagnose test deploymanager reload config

on FortiManager. What does this command do?

A.

It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.

B.

It installs the latest configuration on the specified FortiGate and update the revision history database.

C.

It compares and provides differences in configuration on FortiManager with the current running

configuration of the specified FortiGate.

D.

It installs the provisioning template configuration on the specified FortiGate.

Full Access
Question # 9

View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in theInstall Oncolumn?

A.

The Install On column value represents successful installation on the managed devices

B.

Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets

C.

Policy seq#3 will be installed on the Trainer[NAT] VDOM only

D.

Policy seq#3 will be not installed on any managed device

Full Access
Question # 10

An administrator’s PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash.

How can the administrator unlock the ADOM?

A.

Restore the configuration from a previous backup.

B.

Log in asSuper_Userin order to unlock the ADOM.

C.

Log in using the same administrator account to unlock the ADOM.

D.

Delete the previous admin session manually through the FortiManager GUI or CLI.

Full Access
Question # 11

Which two statements regarding device management on FortiManager are true? (Choose two.)

A.

FortiGate devices in HA cluster devices are counted as a single device.

B.

FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.

C.

FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.

D.

The maximum number of managed devices for each ADOM is 500.

Full Access
Question # 12

Refer to the exhibit.

An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.

What is the purpose of this command?

A.

It allows FortiGate to unset central management settings.

B.

It allows FortiGate to reboot and recover the previous configuration from its configuration file.

C.

It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.

D.

It allows FortiGate to reboot and restore a previously working firmware image.

Full Access
Question # 13

Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.

Which two reasons can explain why the FortiAnalyzer feature panesdo notappear? (Choose two.)

A.

The administrator logged in using the unsecure protocol HTTP, so the view is restricted.

B.

The administrator profile does not have full access privileges like theSuper_Userprofile.

C.

The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.

D.

FortiAnalyzer features are not enabled on FortiManager.

Full Access
Question # 14

Refer to the exhibit.

Which two statements about an ADOM set inNormalmode on FortiManager are true? (Choose two.)

A.

It supports the FortiManager script feature

B.

It allows making configuration changes for managed devices on FortiManager panes

C.

FortiManager automatically installs the configuration difference in revisions on the managed FortiGate

D.

You cannot assign the same ADOM to multiple administrators

Full Access
Question # 15

Which two items are included in the FortiManager backup? (Choose two.)

A.

FortiGuard database

B.

Global database

C.

Logs

D.

All devices

Full Access
Question # 16

An administrator configures a new firewall policy on FortiManager and has not yet pushed the changes to the

managed FortiGate.

In which database will the configuration be saved?

A.

Device-level database

B.

Revision history database

C.

ADOM-level database

D.

Configuration-level database

Full Access
Question # 17

An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package,Fortinet, in the custom ADOM1.

Which statement about the global policy package assignment to the newly-created policy packageFortinetis true?

A.

When a new policy package is created, it automatically assigns the global policies to the new package.

B.

When a new policy package is created, you need to assign the global policy package from the global

ADOM.

C.

When a new policy package is created, you need to reapply the global policy package to the ADOM.

D.

When a new policy package is created, you can select the option to assign the global policies to the new package.

Full Access
Question # 18

Refer to the exhibit.

Which two statements are true if the script is executed using theDevice Databaseoption? (Choose two.)

A.

You must install these changes using theInstall Wizardto a managed device

B.

The successful execution of a script on theDevice Databasewill create a new revision history

C.

The script history will show successful installation of the script on the remote FortiGate

D.

TheDevice Settings Statuswill be tagged asModified

Full Access
Question # 19

Refer to the exhibit.

Given the configuration shown in the exhibit, what can you conclude from the installation targets m the Install On column? (Choose two)

A.

Policy seq # 2 will not be installed on the Local-FortiGate root VDOM because there is no root VDOM in the Installation Target

B.

Policy seq # 3 will be installed on all managed devices and VDOMs that are listed under Installation Targets

C.

Policy seq # 1 will be installed on the Remoto-FortiGate root[NAT] and Student[NAT] VDOMs only

D.

Policy 3 will be installed on all FortiGate devices and vdom belongs to the ADOM

E.

Policy seq # 3 will be skipped because no installation targets are specified

Full Access
Question # 20

Refer to the exhibit.

You ate using the Quick install option to install configuration changes on the managed FortiGate

Which two statements correctly describe the result? (Choose two)

A.

It installs device-level changes on the FortiGate device without launching the Install Wizard

B.

It installs all the changes in the device database first and the administrator must reinstall the changes on the FodiGate device

C.

It provides the option to preview only the policy package changes before installing them

D.

It install provisioning template changes on the FortiGate device

Full Access
Question # 21

What does thediagnose dvm check-integritycommand do? (Choose two.)

A.

Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM

syntax

B.

Verifies and corrects unregistered, registered, and deleted device states

C.

Verifies and corrects database schemas in all object tables

D.

Verifies and corrects duplicate VDOM entries

Full Access
Question # 22

View the following exhibit.

When usingInstall Configoption to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)

A.

Once initiated, the install process cannot be canceled and changes will be installed on the managed device

B.

Will not create new revision in the revision history

C.

Installs device-level changes to FortiGate without launching theInstall Wizard

D.

Provides the option to preview configuration changes prior to installing them

Full Access
Question # 23

What does a policy package status ofModifiedindicate?

A.

FortiManager is unable to determine the policy package status

B.

The policy package was never imported after a device was registered on FortiManager

C.

The Policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager

D.

The Policy package configuration has been changed on FortiManager and changes have not yet been installed on the managed device.

Full Access
Question # 24

An administrator would like to authorize a newly-installed AP using AP Manager. What steps does the administrator need to perform to authorize an AP?

A.

Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.

B.

Changes to the AP's state must be performed directly on the managed FortiGate.

C.

Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.

D.

Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.

Full Access
Question # 25

An administrator is in the process of moving the system template profile between ADOMs by running the following command:

execute improfile import-profile ADOM2 3547 /tmp/myfile

Where does the administrator import the file from?

A.

File system

B.

ADOM1

C.

ADOM2 object database

D.

ADOM2

Full Access
Question # 26

Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

A.

When FortiManager is auto-updated with configuration changes made directly on a managed device

B.

When changes to the device-level database are made on FortiManager

C.

When FortiManager installs device-level changes on a managed device

D.

When a configuration revision is reverted to a previous revision in the revision history

Full Access
Copyright myexamcollection.com. All Right Reserved.