File Info
| Exam | Fortinet NSE 5 -FortiAnalyzer 7-2.VCEPlus |
| Number | NSE5_FAZ-7.2 |
| File Name | Fortinet.NSE5_FAZ-7.2.VCEplus.2024-08-20.93q.tqb |
| Size | 5 MB |
| Posted | Aug 20, 2024 |
| Download | Fortinet.NSE5_FAZ-7.2.VCEplus.2024-08-20.93q.tqb |
How to open VCEX & EXAM Files?
Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.
Coupon: MASTEREXAM
With discount: 20%
Demo Questions
Question 1
What is the main purpose of using an NTP server on FortiAnalyzer and all of its registered devices?
- Log correlation
- Host name resolution
- Log collection
- Real-time forwarding
Correct answer: A
Question 2
What are two advantages of setting up fabric ADOM? (Choose two.)
- It can be used for fast data processing and log correlation
- It can be used to facilitate communication between devices in same Security Fabric
- It can include all Fortinet devices that are part of the same Security Fabric
- It can include only FortiGate devices that are part of the same Security Fabric
Correct answer: AC
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/448471/creating-asecurity-fabric-adom https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/448471/creating-asecurity-fabric-adom
Question 3
What is the purpose of a predefined template on the FortiAnalyzer?
- It can be edited and modified as required
- It specifies the report layout which contains predefined texts, charts, and macros
- It specifies report settings which contains time period, device selection, and schedule
- It contains predefined data to generate mock reports
Correct answer: B
Explanation:
Reference: https://help.fortinet.com/fa/faz50hlp/56/5-6-2/FMGFAZ/2300_Reports/0010_Predefined_reports.htm#:~:text=FortiAnalyzer%20includes%20a%20number%20of,create%20and%2For%20build%20reports.&text=A%20template%20populates%20the%20Layout,that%20is%20to%20be%20created.https://help.fortinet.com/fa/faz50hlp/56/5-6-2/FMGFAZ/2300_Reports/0010_Predefined_reports.htmReference: https://docs2.fortinet.com/document/fortianalyzer/6.0.8/administrationguide/618245/predefined-reports-templates-charts-and-macros Reference: https://help.fortinet.com/fa/faz50hlp/56/5-6-2/FMGFAZ/2300_Reports/0010_Predefined_reports.htm#:~:text=FortiAnalyzer%20includes%20a%20number%20of,create%20and%2For%20build%20reports.&text=A%20template%20populates%20the%20Layout,that%20is
%20to%20be%20created.
https://help.fortinet.com/fa/faz50hlp/56/5-6-2/FMGFAZ/2300_Reports/0010_Predefined_reports.htm
Reference: https://docs2.fortinet.com/document/fortianalyzer/6.0.8/administrationguide/618245/predefined-reports-templates-charts-and-macros
Question 4
For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:
- Use DNS
- Use host name resolution
- Use real-time forwarding
- Use an NTP server
Correct answer: D
Question 5
What FortiGate process caches logs when FortiAnalyzer is not reachable?
- logfiled
- sqlplugind
- oftpd
- miglogd
Correct answer: D
Explanation:
Reference: https://forum.fortinet.com/tm.aspx?m=143106 Reference: https://forum.fortinet.com/tm.aspx?m=143106
Question 6
FortiAnalyzer uses the Optimized Fabric Transfer Protocok (OFTP) over SSL for what purpose?
- To upload logs to an SFTP server
- To prevent log modification during backup
- To send an identical set of logs to a second logging server
- To encrypt log communication between devices
Correct answer: D
Question 7
How can you configure FortiAnalyzer to permit administrator logins from only specific locations?
- Use static routes
- Use administrative profiles
- Use trusted hosts
- Use secure protocols
Correct answer: C
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/186508/trusted-hosts https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/186508/trusted-hosts
Question 8
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?
- The total disk space is insufficient and you need to add other disk.
- CPU resources are too high.
- The ADOM disk quota is set too low based on log rates.
- Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.
Correct answer: C
Explanation:
https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMGFAZ/1100_Storage/0017_Deleted%20device%20logs.htmhttps://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/87802/automaticdeletion https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMGFAZ/1100_Storage/0017_Deleted%20device%20logs.htm
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/87802/automaticdeletion
Question 9
What is the purpose of the following CLI command?
- To add a log file checksum
- To add the MD's hash value and authentication code
- To add a unique tag to each log to prove that it came from this FortiAnalyzer
- To encrypt log communications
Correct answer: A
Explanation:
https://docs2.fortinet.com/document/fortianalyzer/6.0.3/cli-reference/849211/global https://docs2.fortinet.com/document/fortianalyzer/6.0.3/cli-reference/849211/global
Question 10
View the exhibit.
What does the data point at 14:35 tell you?
- FortiAnalyzer is dropping logs.
- FortiAnalyzer is indexing logs faster than logs are being received.
- FortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed.
- The sqlplugind daemon is ahead in indexing by one log.
Correct answer: B
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vsreceive-rate-widget https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vsreceive-rate-widget
