11.11 Special Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: scxmas70

  1. Home
  2. Fortinet
  3. Fortinet Certification
  4. NSE5_FMG-7.2 - Fortinet NSE 5 - FortiManager 7.2

NSE5_FMG-7.2 Exam Dumps - Fortinet NSE 5 - FortiManager 7.2

Question # 4

An administrator has enabled Service Access on FortiManager.

What is the purpose of Service Access on the FortiManager interface?

A.

Allows FortiManager to download IPS packages

B.

Allows FortiManager to respond to request for FortiGuard services from FortiGate devices

C.

Allows FortiManager to run real-time debugs on the managed devices

D.

Allows FortiManager to automatically configure a default route

Full Access
Question # 5

Refer to the exhibit.

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

A.

You must install these changes using the Install Wizard to a managed device

B.

The successful execution of a script on the Device Database will create a new revision history

C.

The script history will show successful installation of the script on the remote FortiGate

D.

The Device Settings Status will be tagged as Modified

Full Access
Question # 6

What does a policy package status of Conflict indicate?

A.

The policy package reports inconsistencies and conflicts during a Policy Consistency Check.

B.

The policy package does not have a FortiGate as the installation target.

C.

The policy package configuration has been changed on both FortiManager and the managed device

independently.

D.

The policy configuration has never been imported after a device was registered on FortiManager.

Full Access
Question # 7

Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.

Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)

A.

The administrator logged in using the unsecure protocol HTTP, so the view is restricted.

B.

The administrator profile does not have full access privileges like the Super_User profile.

C.

The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.

D.

FortiAnalyzer features are not enabled on FortiManager.

Full Access
Question # 8

An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1.

Which statement about the global policy package assignment to the newly-created policy package Fortinet is true?

A.

When a new policy package is created, it automatically assigns the global policies to the new package.

B.

When a new policy package is created, you need to assign the global policy package from the global

ADOM.

C.

When a new policy package is created, you need to reapply the global policy package to the ADOM.

D.

When a new policy package is created, you can select the option to assign the global policies to the new package.

Full Access
Question # 9

Refer to the exhibit.

Which two statements about an ADOM set in Normal mode on FortiManager are true? (Choose two.)

A.

It supports the FortiManager script feature

B.

It allows making configuration changes for managed devices on FortiManager panes

C.

FortiManager automatically installs the configuration difference in revisions on the managed FortiGate

D.

You cannot assign the same ADOM to multiple administrators

Full Access
Question # 10

An administrator’s PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash.

How can the administrator unlock the ADOM?

A.

Restore the configuration from a previous backup.

B.

Log in as Super_User in order to unlock the ADOM.

C.

Log in using the same administrator account to unlock the ADOM.

D.

Delete the previous admin session manually through the FortiManager GUI or CLI.

Full Access
Question # 11

What does the diagnose dvm check-integrity command do? (Choose two.)

A.

Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM

syntax

B.

Verifies and corrects unregistered, registered, and deleted device states

C.

Verifies and corrects database schemas in all object tables

D.

Verifies and corrects duplicate VDOM entries

Full Access
Question # 12

Refer to the exhibit.

An administrator is about to add the FortiGate device to FortiManager using the discovery process FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings

What is the expected result?

A.

During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate

B.

During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate

C.

During discovery FortiManager sets the NATed device IP address on FortiGate

D.

During discovery FortiManager uses only the FortiGate serial number to establish the connection

Full Access
Question # 13

What will happen if FortiAnalyzer features are enabled on FortiManager?

A.

FortiManager will keep all the logs and reports on the FortiManager.

B.

FortiManager will enable ADOMs to collect logs automatically from non-FortiGate devices.

C.

FortiManager will install the logging configuration to the managed devices

D.

FortiManager can be used only as a logging device.

Full Access
Question # 14

Refer to the exhibit.

An administrator wants to create a policy on the Staging ADOM in backup mode, and install it on the FortiGate device in the same ADOM.

How can the administrator perform this task?

A.

The administrator must use the Policy & Objects section to create a policy first.

B.

The administrator must use the FortiManager script.

C.

The administrator must disable the FortiManager offline mode first.

D.

The administrator must change the ADOM mode to Advanced to bring the FortiManager online.

Full Access
Question # 15

View the following exhibit.

When using Install Config option to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)

A.

Once initiated, the install process cannot be canceled and changes will be installed on the managed device

B.

Will not create new revision in the revision history

C.

Installs device-level changes to FortiGate without launching the Install Wizard

D.

Provides the option to preview configuration changes prior to installing them

Full Access
Question # 16

An administrator is replacing a failed device on FortiManager by running the following command:

execute device replace sn .

Which device name and serial number must the administrator use?

A.

The device name of the new device and serial number of the failed device

B.

The device name and serial number of the failed device

C.

The device name of the failed device and serial number of the new device

D.

The device name and serial number of the new device

Full Access
Question # 17

Refer to the exhibit.

On FortiManager, an administrator created a new system template named Training with two new DNS addresses. During the installation preview stage, the administrator notices that central-management settings need to be purged.

What can be the main reason for the central-management purge command?

A.

The Remote-FortiGate device does not have any DNS server-list configured in the central-management settings.

B.

The DNS addresses in the default system settings are the same as the Training system template.

C.

The ADOM is locked by another administrator.

D.

The Training system template has a default FortiGuard widget.

Full Access
Question # 18

Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

A.

The FortiManager ADOM workspace mode is set to Normal.

B.

An administrator can also lock the Local-FortiGate-1 policy package.

C.

The FortiManager ADOM is locked by the administrator.

D.

FortiManager is in workflow mode.

Full Access
Question # 19

Refer to the exhibit.

Which statement is true about the FortiManager ADOM policy tab based on the API request?

A.

The API command has enabled both central NAT and interface policy on the policy tab.

B.

The API command has requested the policy tab permissions information only.

C.

The API command has failed when requesting policy tab permissions information.

D.

The API command has applied to customer with ID: 200.

Full Access
Question # 20

Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

A.

When configuration revision is reverted to previous revision in the revision history

B.

When FortiManager installs device-level changes to a managed device

C.

When FortiManager is auto-updated with configuration changes made directly on a managed device

D.

When changes to device-level database is made on FortiManager

Full Access
Question # 21

An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

A.

When creating a new policy package, the administrator can select the option to assign the global policy

package to the new policy package

B.

When a new policy package is created, the administrator needs to reapply the global policy package to

ADOM1.

C.

When a new policy package is created, the administrator must assign the global policy package from the global ADOM.

D.

When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package.

Full Access
Question # 22

Refer to the exhibit.

You are using the Quick Install option to install configuration changes on the managed FortiGate.

Which two statements correctly describe the result? (Choose two.)

A.

It will not create a new revision in the revision history

B.

It installs device-level changes to FortiGate without launching the Install Wizard

C.

It cannot be canceled once initiated and changes will be installed on the managed device

D.

It provides the option to preview configuration changes prior to installing them

Full Access
Question # 23

In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

A.

Secondary device with highest priority will automatically be promoted to the primary role, and manually

reconfigure all other secondary devices to point to the new primary device

B.

Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.

C.

Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

D.

FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.

Full Access
Question # 24

What is the purpose of the Policy Check feature on FortiManager?

A.

To find and provide recommendation to combine multiple separate policy packages into one common

policy package

B.

To find and merge duplicate policies in the policy package

C.

To find and provide recommendation for optimizing policies in a policy package

D.

To find and delete disabled firewall policies in the policy package

Full Access
Question # 25

Which three settings are the factory default settings on FortiManager? (Choose three.)

A.

Username is admin

B.

Password is fortinet

C.

FortiAnalyzer features are disabled

D.

Reports and Event Monitor panes are enabled

E.

port1 interface IP address is 192.168.1.99/24

Full Access
Question # 26

Which configuration setting for FortiGate is part of a device-level database on FortiManager?

A.

VIP and IP Pools

B.

Firewall policies

C.

Security profiles

D.

Routing

Full Access
Question # 27

An administrator would like to authorize a newly-installed AP using AP Manager. What steps does the administrator need to perform to authorize an AP?

A.

Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.

B.

Changes to the AP's state must be performed directly on the managed FortiGate.

C.

Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.

D.

Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.

Full Access
Question # 28

View the following exhibit.

An administrator is importing a new device to FortiManager and has selected the shown options. What will happen if the administrator makes the changes and installs the modified policy package on this managed FortiGate?

A.

The unused objects that are not tied to the firewall policies will be installed on FortiGate

B.

The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate

C.

The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted

D.

The unused objects that are not tied to the firewall policies in policy package will be deleted from the

FortiManager database

Full Access
Question # 29

An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.

Which troubleshooting step should you take to resolve the issue?

A.

Make sure FortiManager Access is enabled in the administrator profile

B.

Make sure Offline Mode is disabled

C.

Make sure the administrator IP address is part of the trusted hosts.

D.

Make sure ADOMs are enabled and the administrator has access to the Global ADOM

Full Access
Question # 30

Refer to the following exhibit:

Which of the following statements are true based on this configuration? (Choose two.)

A.

The same administrator can lock more than one ADOM at the same time

B.

Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out

C.

Unlocking an ADOM will submit configuration changes automatically to the approval administrator

D.

Unlocking an ADOM will install configuration automatically on managed devices

Full Access

Hot Exams

ADM-201 Dumps
Sales-Cloud-Consultant Dumps
Service-Cloud-Consultant Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
Associate-Cloud-Engineer Dumps
350-701 Dumps
CKA Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps