Fortinet nse5-fmg-7-2 practice test
fortinet nse 5 - fortimanager 7.2
Last exam update: Oct 15 ,2024
Question 1
Which two settings are required for FortiManager Management Extension Applications (MEA)? (Choose two.)
- A. You must create an MEA special policy on FortiManager using the super user profile.
- B. You must open the ports to the Fortinet registry.
- C. When you configure MEA, you must open TCP or UDP port 540.
- D. The administrator must have the super user profile.
Answer:
bd
Question 2
An administrator is in the process of moving the system template profile between ADOMs by running the following command: execute fmprofile import-profile ADOM2 3547 /tmp/myfile
Where does the administrator import the file from?
- A. File system
- B. ADOM1
- C. ADOM2 object database
- D. ADOM2
Answer:
a
Question 3
Refer to the exhibit showing a Download Import Report.
Why is it failing to import firewall policy ID 1?
- A. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
- B. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.
- C. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.
- D. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
Answer:
b
Question 4
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>.
Which device name and serial number must the administrator use?
- A. The device name of the new device and serial number of the failed device
- B. The device name and serial number of the failed device
- C. The device name of the failed device and serial number of the new device
- D. The device name and serial number of the new device
Answer:
c
Question 5
What will happen if FortiAnalyzer features are enabled on FortiManager?
- A. FortiManager will keep all the logs and reports on the FortiManager.
- B. FortiManager will install the logging configuration to the managed devices.
- C. FortiManager can be used only as a logging device.
- D. FortiManager will enable ADOMs to collect logs automatically from non-FortiGate devices.
Answer:
a
Question 6
Which two statements about the scheduled backup of FortiManager are true? (Choose two.)
- A. It can be configured using the CLI and GUI.
- B. It does not back up firmware images saved on FortiManager.
- C. It backs up all devices and the FortiGuard database.
- D. It supports FTP, SCP, and SFTP.
Answer:
ad
Question 7
In the event that one of the secondary FortiManager devices fails, which action must be performed to return the FortiManager HA manual mode to a working state?
- A. The FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
- B. Manually promote one of the working secondary devices to the primary role, and reboot the old primary device to remove the peer IP of the failed device.
- C. Reconfigure the primary device to remove the peer IP of the failed device.
- D. Reboot the failed device to remove its IP from the primary device.
Answer:
b
Question 8
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?
- A. Trainer must first create their own workflow session to approve student session.
- B. Trainer is not a part of workflow approval group.
- C. Trainer must close Students workflow session before approving the request.
- D. Trainer does not have full rights over this ADOM.
Answer:
b -
Question 9
An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1.
What will happen to the Fortinet policy package when it is created?
- A. You need to assign the global policy package from the global ADOM.
- B. You can select the option to assign the global policies.
- C. You need to reapply the global policy package to the ADOM.
- D. It automatically assigns the global policies.
Answer:
c
Question 10
Refer to the exhibit.
You are using the Quick Install option to install configuration changes on the managed FortiGate.
Which two statements correctly describe the result? (Choose two.)
- A. It installs provisioning template changes on the FortiGate device.
- B. It installs device-level changes on the FortiGate device without launching the Install Wizard.
- C. It installs all the changes in the device database first and the administrator must reinstall the changes on the FortiGate device.
- D. It provides the option to preview only the policy package changes before installing them.
Answer:
bc