What does a policy package status of Modified indicate?
Answer : D
Reference: http://help.fortinet.com/fmgr/50hlp/56/5-6-1/FortiManager_Admin_Guide/1200_Policy%20and%20Objects/0800_Managing%20policy%20packages/2200_Policy%20Package%20Installation%20targets.htm
Refer to the exhibit.
If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
Answer : CD
Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.
Which two settings must be configured for SD-WAN Central Management? (Choose two.)
Answer : CD
An administrator wants to delete an address object that is currently referenced in a firewall policy.
What can the administrator expect to happen?
Answer : A
Reference: https://help.fortinet.com/fmgr/50hlp/56/5-6-2/FortiManager_Admin_Guide/1200_Policy%20and%20Objects/1200_Managing%20objects/0800_Remove%20an%20object.htm
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.
How should the Workspace mode be configured on FortiManager?
Answer : A
Reference: https://help.fortinet.com/fmgr/50hlp/52/5-2-0/FMG_520_Online_Help/200_What's-New.03.03.html
Refer to the exhibit.
Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
Answer : AB
Reference: http://help.fortinet.com/fmgr/cli/5-6-2/Document/0800_AD0Ms/200_Configuring+.htm
Refer to the exhibits.
An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.
What could be the main reason for these unset commands?
Answer : D
An administrator would like to create an SD-WAN using central management in the Training ADOM.
To create an SD-WAN using central management, which two steps must be completed? (Choose two.)
Answer : AC
Reference: https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/676493/removing-existing-configuration-references-to-interfaces
Refer to the exhibit.
What can you conclude from the failed installation log shown in the exhibit?
Answer : C
Refer to the exhibit.
Which statement about the object named ALL is true?
Answer : B
If a conflict is detected, FortiManager updates the object associated with the selected device. When you choose the FortiGate device value and import the address object ALL, an entry named update previous object is added to the import report
Refer to the exhibit.
What is the purpose of setting ADOM Mode to Advanced?
Answer : C
Reference: https://docs.fortinet.com/document/fortianalyzer/7.0.0/administration-guide/66530/adom-device-modes
Refer to the exhibit.
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?
Answer : D
Reference: https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG-FAZ/0800_ADOMs/1800_Workflow/0600_Workflow%20sessions.htm
Refer to the exhibit.
You are using the Quick Install option to install configuration changes on the managed FortiGate.
Which two statements correctly describe the result? (Choose two.)
Answer : CD
The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing. Administrator should be certain of the changes before using this install option, because the install can’t be cancelled after the process is initiated.
Refer to the exhibit.
How will FortiManager try to get updates for antivirus and IPS?
Answer : A
Reference: https://community.fortinet.com/t5/Fortinet-Forum/Clarification-of-FortiManager-s-quot-Server-Override-Mode-quot/td-p/89973
Refer to the exhibit.
Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?
Answer : B