1. Home
  2. Fortinet
  3. Fortinet Network Security Expert
  4. FCP_FMG_AD-7.6
  5. FortiManager 7.6 Administrator Questions and Answers

Pass the Fortinet Fortinet Network Security Expert FCP_FMG_AD-7.6 Questions and answers with CertsForce

 Fortinet Exams      Go to Exam Detail      Get Premium Access
Viewing page 1 out of 1 pages
Viewing questions 1-10 out of questions
Questions # 1:

Refer to the exhibits.

Question # 1

Question # 1

An administrator runs the reload failure commanddiagnose test deploymanager reloadconf 262on FortiManager.

Why does the administrator receive an error message?

Options:
A.

The administrator must use the FortiGate name instead of the ID number.

B.

The administrator just recently added FortiGate HQ-NGFW as a model device.

C.

FortiManager requires the FortiGate serial number instead of the ID number.

D.

FortiManager does not support FortiOS version 7.0.

Expert Solution
Questions # 2:

The administrator uses FortiManager to push a CLI script using the Remote FortiGate Directly (via CLI) option to configure an IPsec VPN. However, when running the script, the administrator receives the following error:

config vpn ipsec phase2-interface [parameter(s) invalid. detail: object mismatch]

What must the administrator do to resolve the script error and successfully apply the IPsec configuration?

Options:
A.

Add the end command after finishing the IPsec phase 1-interface configuration block.

B.

Use IPsec templates to deploy provisioning templates.

C.

Add a second config vpn ipsec phase2-interface block without linking it to phase1.

D.

Run the script using the policy package or ADOM database method.

Expert Solution
Questions # 3:

What is the best explanation of how FortiManager helps with mass provisioning?

Options:
A.

It upgrades the OS of each FortiGate device.

B.

It provides local FortiGuard Distribution Server (FDS) services to the network.

C.

It uses templates to configure the same settings on many devices simultaneously.

D.

It sends email alerts when new devices connect.

Expert Solution
Questions # 4:

Refer to the exhibit.

Question # 4

What are two results from the configuration shown in the exhibit? (Choose two.)

Options:
A.

Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out.

B.

The administrator can lock policy blocks and FortiManager global ADOM.

C.

The same administrator can lock more than one ADOM at the same time.

D.

The administrator must have access to the ADOM to approve changes.

Expert Solution
Questions # 5:

Which output is displayed right after moving the ISFW device from one ADOM to another?

A)

Question # 5

B)

Question # 5

C)

Question # 5

D)

Question # 5

Options:
A.

Option A

B.

Option B

C.

Option C

D.

Option D

Expert Solution
Questions # 6:

Push updates are failing on a FortiGate device located behind a network address translation (NAT) device?

Which two settings should the administrator check to correct this problem? (Choose two.)

Options:
A.

Make sure the NAT device IP address and the correct ports are configured on FortiManager.

B.

Make sure FortiGuard updates and web service are enabled on the FortiGuard service interface.

C.

Make sure the virtual IP address and the correct ports are configured on the NAT device.

D.

Make sure the Bind to IP address option on the FortiGuard service interface is set to the virtual IP address from the NAT device.

Expert Solution
Questions # 7:

Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

Options:
A.

When FortiManager installs device-level changes on a managed device

B.

When changes to the device-level database are made on FortiManager

C.

When FortiManager is auto-updated with configuration changes made directly on a managed device

D.

When a provisioning template is assigned to a managed device on the device-level database

Expert Solution
Questions # 8:

You want to let multiple administrators work in the same ADOM without creating configuration conflicts.

What is the best and the most effective solution to apply?

Options:
A.

Configure RADIUS authentication to assign ADOM roles to each user.

B.

Enable workflow mode, which is the only way to prevent concurrent configuration conflicts.

C.

Assign administrators with JSON API access to the FortiManager.

D.

Activate workspace mode in the ADOM settings.

Expert Solution
Questions # 9:

An administrator configures a new BGP peer in the FortiManager device-level database of FortiGate. They reinstall the policy package to the managed FortiGate device without any errors. However, when the administrator logs in to FortiGate, they do not see the BGP configuration changes.

What is the most likely reason why FortiManager did not push the BGP peer changes to FortiGate?

Options:
A.

The administrator must run a sanity check on FortiManager to make sure the database is not corrupted.

B.

Fortigate has a BGP template assigned on the FortiManager database.

C.

The administrator must use the Install Wizard and select Install device settings only to push BGP settings

D.

The FortiGate firmware version is different from the FortiManager ADOM version.

Expert Solution
Viewing page 1 out of 1 pages
Viewing questions 1-10 out of questions