Pre-Winter Special Sale - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: suredis

Fortinet FCP_FMG_AD-7.4 FCP - FortiManager 7.4 Administrator Exam Practice Test

FCP - FortiManager 7.4 Administrator Questions and Answers

Testing Engine

  • Product Type: Testing Engine
$42  $119.99

PDF Study Guide

  • Product Type: PDF Study Guide
$36.75  $104.99
Question 1

Exhibit.

An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.)

Options:

A.

The FortiManager administrator must set the ADOM device mode to Advanced

B.

Policies and objects databases can be shared between the Financial and HR ADOMs.

C.

An administrator with the super user profile can access all the VDOMs.

D.

The administrator must configure FortiManager in workspace normal mode.

Question 2

Refer to the exhibit.

What percent of the available RAM is being used by the process in charge of downloading the web and email filter databases from the public FortiGuard servers?

Options:

A.

2.9

B.

3.1

C.

1.5

D.

4.1

Question 3

Refer to the exhibit.

An administrator has created a firewall address object that is used in multiple policy packages for multiple FortiGate devices in an ADOM.

After the installation operation is performed, which IP/netmask is shown on FortiManager for this firewall address object for devices without a Per-Device Mapping set?

Options:

A.

FortiManager generates an error for each FortiGate without a per-device mapping defined for that object.

B.

192.168.1.0/24

C.

192.168.1.0/28

D.

FortiManager replaces the address object to none.

Question 4

An administrator enabled workspace mode and now wants to delete an address object that is currently referenced in a firewall policy. Which two results can the administrator expect? (Choose two.)

Options:

A.

FortiManager will temporarily change the status of the referenced firewall policy to disabled.

B.

FortiManager will disable the status of the address object until the changes are installed.

C.

FortiManager will not allow the administrator to delete a referenced address object until they lock the ADOM.

D.

FortiManager will replace the deleted address object with the none address object in the referenced firewall policy.

Question 5

Refer to the exhibit.

A junior administrator is troubleshooting a FortiManager connectivity issue that is occurring with a managed FortiGate device.

Given the FortiManager device manager settings shown in the exhibit, what can you conclude from this scenario?

Options:

A.

The administrator must refresh the device to restore connectivity.

B.

FortiManager lost internet connectivity, therefore, the device appears to be down.

C.

The administrator can reclaim the FortiGate to FortiManager protocol (FGFM) tunnel to get the device online.

D.

The administrator recently restored a FortiManager configuration file.

Question 6

Which statement about the policy lock feature on FortiManager is true?

Options:

A.

Policy locking is available in workspace normal mode.

B.

Locking a policy takes precedence over a locked ADOM.

C.

When a policy is locked, the ADOM that contains it is also locked.

D.

Administrators in the approval group can work concurrently on a locked policy.

Question 7

Push updates are failing on a FortiGate device that is located behind a NAT device. Which two settings should the administrator check? (Choose two.)

Options:

A.

That the override server IP address is set on FortiManager and the NAT device

B.

That the external IP address on the NAT device is set to DHCP and configured with the virtual IP

C.

That the NAT device IP address and correct ports are configured on FortiManager

D.

That the virtual IP address and correct ports are set on the NAT device

Question 8

Which API method is used to create objects or overwrite existing ones?

Options:

A.

Set

B.

Add

C.

Exec

D.

Update

Question 9

Exhibit.

Which two statements about the output are true? (Choose two.)

Options:

A.

The latest revision history for the managed FortiGate does not match the device-level database.

B.

Configuration changes have been installed on FortiGate, which means the FortiGate configuration has been changed.

C.

Configuration changes directly made on FortiGate have been automatically updated to the device-level database.

D.

The latest revision history for the managed FortiGate does match the FortiGate running configuration.

Question 10

Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

Options:

A.

The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices.

B.

The Security Fabric settings are part of the device-level settings.

C.

The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices.

D.

The Security Fabric license, group name, and password are required for the FortiManager Security Fabric integration.