Fortinet FCP_FGT_AD-7.6 - FCP - FortiGate 7.6 Administrator Exam
Page: 2 / 9
Total 45 questions
Question #6 (Topic: Exam A)
Refer to the exhibit.
The NOC team connects to the FortiGate GUI with the NOC_Access admin profile. They request that their GUI sessions do not disconnect too early during inactivity.
What must the administrator configure to answer this specific request from the NOC team?
The NOC team connects to the FortiGate GUI with the NOC_Access admin profile. They request that their GUI sessions do not disconnect too early during inactivity.
What must the administrator configure to answer this specific request from the NOC team?
A. Move NOC_Access to the top of the list to ensure all profile settings take effect.
B. Increase the offline value of the Override Idle Timeout parameter in the NOC_Access admin profile.
C. Ensure that all NOC_Access users are assigned the super_admin role to guarantee access
D. Increase the admintimeout value under config system accprofile NOC_Access.
Answer: D
Question #7 (Topic: Exam A)
Refer to the exhibit.
Based on this partial configuration, what are the two possible outcomes when FortiGate enters conserve mode? (Choose two.)
Based on this partial configuration, what are the two possible outcomes when FortiGate enters conserve mode? (Choose two.)
A. Administrators cannot change the configuration.
B. FortiGate skips quarantine actions.
C. Administrators must restart FortiGate to allow new session.
D. FortiGate drops new sessions requiring inspection.
Answer: BD
Question #8 (Topic: Exam A)
What is the primary FortiGate election process when the HA override setting is enabled?
A. Connected monitored ports > Priority > HA uptime > FortiGate serial number
B. Connected monitored ports > Priority > System uptime > FortiGate serial number
C. Connected monitored ports > HA uptime > Priority > FortiGate serial number
D. Connected monitored ports > System uptime > Priority > FortiGate serial number
Answer: A
Question #9 (Topic: Exam A)
An administrator wanted to configure an IPS sensor to block traffic that triggers a signature set number of times during a specific time period.
How can the administrator achieve the objective?
How can the administrator achieve the objective?
A. Use IPS group signatures, set rate-mode 60.
B. Use IPS packet logging option with periodical filter option.
C. Use IPS filter, rate-mode periodical option.
D. Use IPS filter, rate-mode periodical option.
Answer: C
Question #10 (Topic: Exam A)
A FortiGate firewall policy is configured with active authentication, however, the user cannot authenticate when accessing a website.
Which protocol must FortiGate allow even though the user cannot authenticate?
Which protocol must FortiGate allow even though the user cannot authenticate?
A. LDAP
B. TACASC+
C. Kerberos
D. DNS
Answer: D
