Fortinet FCP_FAZ_AD-7.4 Exam Questions Free Practice Test

Viewing page 2 out of 6 pages

Viewing questions 11-20 out of questions

Questions # 11:

For which two SAML roles can the FortiAnalyzer be configured? (Choose two.)

Options:

Principal

Service provider

Identity collector

Identity provider

Expert Solution

Questions # 12:

A playbook contains five tasks in total. An administrator runs the playbook and four out of five tasks finish successfully, but one task fails. What will be the status of the playbook after it is run?

Options:

Running

Failed

Upstream_failed

Success

Expert Solution

Questions # 13:

A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer.

What can you do on FortiAnalyzer to accomplish this?

Options:

Click FortiView and generate a report for that administrator.

Click Task Monitor and view the tasks performed by that administrator.

Click Log View and generate a report for that administrator.

View the tasks performed by the rogue administrator in Fabric View.

Expert Solution

Questions # 14:

How can you attach a report to an incident?

Options:

By attaching it to an event handler alert

By editing the settings of the desired report

From the properties of an existing incident

Saving it in JSON format, and then importing it

Expert Solution

Questions # 15:

The admin administrator is failing to register a FortiClient EMS on the FortiAnalyzer device.

What can be the reason for this failure?

Options:

FortiAnalyzer is in an HA cluster.

ADOM mode should be set to advanced, in order to register the FortiClient EMS device.

ADOMs are not enabled on FortiAnalyzer.

A separate license is required on FortiAnalyzer in order to register the FortiClient EMS device.

Expert Solution

Questions # 16:

Why run the command diagnose sql status sqlplugind?

Options:

To list the current SQL processes running

To check what is the database log insertion status

To display the SOL query connections and hcache status

To view the current hcache size

Expert Solution

Questions # 17:

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate on FortiAnalyzer with any user account in a single LDAP group? (Choose two.)

Options:

A local wildcard administrator account

An administrator group

One or more remote LDAP servers

LDAP servers IP addresses added as trusted hosts

Expert Solution

Questions # 18:

Which statement about the FortiSIEM management extension is correct?

Options:

Allows you to manage the entire life cycle of a threat or breach.

Its use of the available disk space is capped at 50%.

It requires a licensed FortiSIEM supervisor.

It can be installed as a dedicated VM.

Expert Solution

Questions # 19:

What is the purpose of a predefined template on the FortiAnalyzer?

Options:

It can be edited and modified as required

It specifies the report layout which contains predefined texts, charts, and macros

It specifies report settings which contains time period, device selection, and schedule

It contains predefined data to generate mock reports

Expert Solution

Questions # 20:

Which two statements are true about FortiAnalyzer log forwarding modes? (Choose two.)

Options:

Both modes, forwarding and aggregation send logs as soon as they are received.

Aggregation mode requires two FortiAnalyzer devices.

Forwarding mode forwards logs to other FortiAnalyzer devices syslog servers, or CEF servers.

Forwarding mode requires configuration on the server side.

Expert Solution

Viewing page 2 out of 6 pages

Viewing questions 11-20 out of questions

Pass the Fortinet Fortinet Certified Professional Network Security FCP_FAZ_AD-7.4 Questions and answers with CertsForce