Fortinet NSE5_FAZ-5.4 - FortiAnalyzer 5.4 Specialist Exam
Page: 1 / 5
Total 25 questions
Question #1 (Topic: Topic 1)
On FortiAnalyzer, what is a wildcard administrator account?
A. An account that permits access to members of a LDAP group
B. An account that allows guest access with read-only privileges
C. An account that requires two-factor authentication
D. An account that validates against any user account on a FortiAuthenticator
Answer: D
Question #2 (Topic: Topic 1)
Which FortiAnalyzer feature allows you to retrieve the archived logs matching a specific timeframe from another FortiAnalyzer device?
A. Log forwarding in aggregation mode
B. Log upload
C. Log fetching
D. Indicators of Compromise
Answer: C
Question #3 (Topic: Topic 1)
How does FortiAnalyzer retrieve specific log data from the database?
A. SQL FROM statement
B. SQL GET statement
C. SQL SELECT statement
D. SQL EXTRACT statement
Answer: C
Question #4 (Topic: Topic 1)
Logs are being deleted from one of your ADOMs earlier than the configured setting for archiving in your data policy. What is the most likely problem?
A. Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device
B. CPU resources are too high
C. The ADOM disk quota is set too low based on log rates
D. The total disk space is insufficient and you need to add other disk
Answer: C
Question #5 (Topic: Topic 1)
How do you restrict an administrator’s access to a subset of your organization’s ADOMs?
A. Set the ADOM mode to Advanced
B. Configure trusted hosts
C. Assign the ADOMs to the administrator’s account
D. Assign the default Super_User administrator profile
Answer: C
