Weekend Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: cramtreat

NSE5_FMG-7.2 Fortinet NSE 5 - FortiManager 7.2 Questions and Answers

Questions 4

Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

Options:

A.

The FortiManager ADOM workspace mode is set to Normal.

B.

An administrator can also lock the Local-FortiGate-1 policy package.

C.

The FortiManager ADOM is locked by the administrator.

D.

FortiManager is in workflow mode.

Buy Now
Questions 5

What is the purpose of the Policy Check feature on FortiManager?

Options:

A.

It provides recommendations for optimizing policies in a policy package.

B.

It provides recommendations to combine similar policy packages within an ADOM into one single policy package.

C.

It compares the policy packages with the revision history, and updates policy packages in the ADOM database.

D.

It merges and creates dynamic mappings for duplicate objects used in a policy package.

Buy Now
Questions 6

In addition to the default ADOMs, an administrator has created a new ADOM named Training for FortiGate devices. The administrator authorized the FortiGate device on FortiManager using the Fortinet Security Fabric.

Given the administrator's actions, which statement correctly describes the expected result?

Options:

A.

The FortiManager administrator must add the authorized device to the Training ADOM using the Add Device wizard only.

B.

The authorized FortiGate will be automatically added to the Training ADOM.

C.

The authorized FortiGate will appear in the root ADOM.

D.

The authorized FortiGate can be added to the Training ADOM using FortiGate Fabric Connectors.

Buy Now
Questions 7

What is the purpose of ADOM revisions?

Options:

A.

To create System Checkpoints for the FortiManager configuration.

B.

To save the current state of the whole ADOM.

C.

To save the current state of all policy packages and objects for an ADOM.

D.

To revert individual policy packages and device-level settings for a managed FortiGate by reverting to a specific ADOM revision

Buy Now
Questions 8

Refer to the exhibit.

Which two statements about an ADOM set in Normal mode on FortiManager are true? (Choose two.)

Options:

A.

It supports the FortiManager script feature

B.

It allows making configuration changes for managed devices on FortiManager panes

C.

FortiManager automatically installs the configuration difference in revisions on the managed FortiGate

D.

You cannot assign the same ADOM to multiple administrators

Buy Now
Questions 9

Refer to the exhibit.

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

Options:

A.

You must install these changes using the Install Wizard to a managed device

B.

The successful execution of a script on the Device Database will create a new revision history

C.

The script history will show successful installation of the script on the remote FortiGate

D.

The Device Settings Status will be tagged as Modified

Buy Now
Questions 10

What will be the result of reverting to a previous revision version in the revision history?

Options:

A.

It will install configuration changes to managed device automatically

B.

It will tag the device settings status as Auto-Update

C.

It will generate a new version ID and remove all other revision history versions

D.

It will modify the device-level database

Buy Now
Questions 11

Refer to the exhibit.

An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.

What is the purpose of this command?

Options:

A.

It allows FortiGate to unset central management settings.

B.

It allows FortiGate to reboot and recover the previous configuration from its configuration file.

C.

It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.

D.

It allows FortiGate to reboot and restore a previously working firmware image.

Buy Now
Questions 12

An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1.

Which statement about the global policy package assignment to the newly-created policy package Fortinet is true?

Options:

A.

When a new policy package is created, it automatically assigns the global policies to the new package.

B.

When a new policy package is created, you need to assign the global policy package from the global

ADOM.

C.

When a new policy package is created, you need to reapply the global policy package to the ADOM.

D.

When a new policy package is created, you can select the option to assign the global policies to the new package.

Buy Now
Questions 13

View the following exhibit.

What is the purpose of setting ADOM Mode to Advanced?

Options:

A.

The setting allows automatic updates to the policy package configuration for a managed device

B.

The setting enables the ADOMs feature on FortiManager

C.

This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs.

D.

The setting disables concurrent ADOM access and adds ADOM locking

Buy Now
Questions 14

What is the purpose of the Policy Check feature on FortiManager?

Options:

A.

To find and provide recommendation to combine multiple separate policy packages into one common

policy package

B.

To find and merge duplicate policies in the policy package

C.

To find and provide recommendation for optimizing policies in a policy package

D.

To find and delete disabled firewall policies in the policy package

Buy Now
Questions 15

An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package Fortinet in the custom ADOM1. What will happen to the Fortinet policy package when it is created?

Options:

A.

You need to assign the global policy package from the global ADOM

B.

You need to reapply the global poky package to the ADOM

C.

it automatically assigns the global policies

D.

You can select the option to assign the global polices

Buy Now
Questions 16

Which three settings are the factory default settings on FortiManager? (Choose three.)

Options:

A.

The administrative domain is disabled.

B.

The Port1 interface IP address is 192.168.1.99/24.

C.

Management Extension applications are enabled.

D.

The FortiManager setup wizard is disabled.

E.

FortiAnalvzer features are disabled.

Buy Now
Questions 17

An administrator created a header and footer global policy package and assigned it to an ADOM.

What are two outcomes from this action? (Choose two.)

Options:

A.

You must manually move the header and footer policies after the policy assignment.

B.

After you assign the global policy package to an ADOM, the policy package is hidden from the ADOM and cannot be viewed.

C.

If you assign an additional global policy package to the same ADOM, FortiManaqer removes previously assigned policies.

D.

You can edit or delete all the global objects in the global ADOM.

Buy Now
Questions 18

Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

Options:

A.

When FortiManager is auto-updated with configuration changes made directly on a managed device

B.

When changes to the device-level database are made on FortiManager

C.

When FortiManager installs device-level changes on a managed device

D.

When a configuration revision is reverted to a previous revision in the revision history

Buy Now
Questions 19

What will happen if FortiAnalyzer features are enabled on FortiManager?

Options:

A.

FortiManager will keep all the logs and reports on the FortiManager.

B.

FortiManager will enable ADOMs to collect logs automatically from non-FortiGate devices.

C.

FortiManager will install the logging configuration to the managed devices

D.

FortiManager can be used only as a logging device.

Buy Now
Questions 20

Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

Options:

A.

The Security Fabric license, group name and password are required for the FortiManager Security Fabric

integration

B.

The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices

C.

The Security Fabric settings are part of the device level settings

D.

The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices

Buy Now
Questions 21

An administrator’s PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash.

How can the administrator unlock the ADOM?

Options:

A.

Restore the configuration from a previous backup.

B.

Log in as Super_User in order to unlock the ADOM.

C.

Log in using the same administrator account to unlock the ADOM.

D.

Delete the previous admin session manually through the FortiManager GUI or CLI.

Buy Now
Questions 22

Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

Options:

A.

It allows two or more administrators to make configuration changes at the same time, in the same ADOM.

B.

It disables concurrent read-write access to an ADOM.

C.

It allows the same administrator to lock more than one ADOM at the same time.

D.

It is used to validate administrator login attempts through external servers.

Buy Now
Questions 23

An administrator has enabled Service Access on FortiManager.

What is the purpose of Service Access on the FortiManager interface?

Options:

A.

Allows FortiManager to download IPS packages

B.

Allows FortiManager to respond to request for FortiGuard services from FortiGate devices

C.

Allows FortiManager to run real-time debugs on the managed devices

D.

Allows FortiManager to automatically configure a default route

Buy Now
Questions 24

What are two outcomes of ADOM revisions? (Choose two.)

Options:

A.

ADOM revisions can significantly increase the size of the configuration backups.

B.

ADOM revisions can save the current size of the whole ADOM

C.

ADOM revisions can create System Checkpoints for the FortiManager configuration

D.

ADOM revisions can save the current state of all policy packages and objects for an ADOM

Buy Now
Questions 25

An administrator would like to create an SD-WAN using central management in the Training ADOM.

To create an SD-WAN using central management, which two steps must be completed? (Choose two.)

Options:

A.

Specify a gateway address when you create a default SD-WAN static route

B.

Enable SD-WAN central management in the Training ADOM

C.

Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN

template settings

D.

Remove all the interface references such as routes or policies that will be a part of SD-WAN member

interfaces

Buy Now
Questions 26

In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

Options:

A.

Secondary device with highest priority will automatically be promoted to the primary role, and manually

reconfigure all other secondary devices to point to the new primary device

B.

Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.

C.

Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

D.

FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.

Buy Now
Questions 27

View the following exhibit, which shows the Download Import Report:

Why it is failing to import firewall policy ID 2?

Options:

A.

The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate

B.

Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager

C.

Policy ID 2 does not have ADOM Interface mapping configured on FortiManager

D.

Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.

Buy Now
Questions 28

Refer to the exhibits.

Exhibit one.

Exhibit two.

An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.

What can be the main reason for these unset commands?

Options:

A.

The DNS addresses in the default system settings are the same as the Training system template

B.

The Training system template has other default settings

C.

The ADOM is locked by another administrator

D.

The Training system template does not have assigned devices

Buy Now
Questions 29

Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

Options:

A.

When configuration revision is reverted to previous revision in the revision history

B.

When FortiManager installs device-level changes to a managed device

C.

When FortiManager is auto-updated with configuration changes made directly on a managed device

D.

When changes to device-level database is made on FortiManager

Buy Now

Fortinet Certification |

Exam Code: NSE5_FMG-7.2
Exam Name: Fortinet NSE 5 - FortiManager 7.2
Last Update: May 11, 2024
Questions: 97
NSE5_FMG-7.2 pdf

NSE5_FMG-7.2 PDF

$28  $80
 Add to Cart
NSE5_FMG-7.2 Engine

NSE5_FMG-7.2 Testing Engine

$33.25  $95
 Add to Cart
NSE5_FMG-7.2 PDF + Engine

NSE5_FMG-7.2 PDF + Testing Engine

$45.5  $130
 Add to Cart