Fortinet NSE 5 - FortiManager 7.0 v1.0 (NSE5_FMG-7.0)

Page:    1 / 3   
Total 38 questions

An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1.
What will happen to the Fortinet policy package?

  • A. When the Fortinet policy package is created, it automatically assigns the global policies.
  • B. When the Fortinet policy package is created, you can select the option to assign the global policies.
  • C. When the Fortinet policy package is created, you need to reapply the global policy package to the ADOM.
  • D. When the Fortinet policy package is created, you need to assign the global policy package from the global ADOM.


Answer : A

What is the advantage of using FortiManager to manage FortiAnalyzer?

  • A. It allows FortiManager to act as a collector and FortiAnalyzer device.
  • B. It allows FortiManager to manage all FortiGate devices.
  • C. It allows FortilManager to run reports based on FortiAnalyzer.
  • D. It allows FortiManager to store all managed FortiGate device logs.


Answer : A

Which two items are included in the FortiManager backup? (Choose two.)

  • A. FortiGuard database
  • B. Firmware images
  • C. Flash configuration
  • D. All devices


Answer : CD

An administrator has enabled Service Access on FortiManager.
What is the purpose of Service Access on the FortiManager interface?

  • A. It allows administrative access to FortiManager.
  • B. It allows FortiManager to respond to requests for FortiGuard services from FortiGate devices.
  • C. It allows FortiManager to determine the connection status of managed devices.
  • D. It allows third-party applications to gain read/write access to FortiManager.


Answer : B

Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

  • A. An administrator can also lock the Local-FortiGate-1 policy package.
  • B. The FortiManager ADOM is locked by the administrator.
  • C. The FortiManager ADOM mode is set to Normal.
  • D. FortiManager is in workflow mode.


Answer : AD

You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?

  • A. Policy packages will be imported into the new ADOM automatically.
  • B. Any pending device settings will be installed automatically.
  • C. The shared policy package will not be moved to the new ADOM.
  • D. Any unused objects from a previous ADOM are moved to the new ADOM automatically.


Answer : A

Which two statements regarding device management on FortiManager are true? (Choose two.)

  • A. FortiGate devices in an HA cluster are counted as a single device.
  • B. FortiGate devices in transparent mode configurations are not counted toward the device count on FortiManager.
  • C. The maximum number of managed devices for each ADOM is 500.
  • D. FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.


Answer : AD

An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>.
What device name and serial number must the administrator use?

  • A. The device name of the new device and serial number of the failed device
  • B. The device name and serial number of the new device
  • C. The device name and serial number of the failed device
  • D. The device name of the failed device and serial number of the new device


Answer : D

Refer to the exhibit.

Review the Download Import Report.
Why is it failing to import firewall policy ID 1?

  • A. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
  • B. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.
  • C. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
  • D. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.


Answer : D

Which two items does an FGFM keepalive message include? (Choose two.)

  • A. FortiGate IPS version
  • B. FortiGate uptime
  • C. FortiGate configuration checksum
  • D. FortiGate license information


Answer : AC

Refer to the exhibit.

Given the configuration shown in the exhibit, what are two results from this configuration? (Choose two.)

  • A. Two or more administrators can make configuration changes at the same time, in the same ADOM.
  • B. Concurrent read-write access to an ADOM is disabled.
  • C. You can validate administrator login attempts through external servers.
  • D. The same administrator can lock more than one ADOM at the same time.


Answer : BD

Refer to the exhibit.

What is the purpose of setting ADOM Mode to Advanced?

  • A. This setting enables the ADOMs feature on FortiManager.
  • B. This setting allows you to assign a VDOM when offline mode is enabled.
  • C. This setting disables concurrent ADOM access and adds ADOM locking.
  • D. This setting allows you to assign a VDOM from a single device to a different ADOM.


Answer : D

Refer to the exhibit.

An administrator has created a firewall address object that is used in multiple policy packages for multiple FortiGate devices in an ADOM.
After the installation operation is performed, which IP/netmask will be shown on FortiManager for this firewall address object?

  • A. The FortiManager replaces the address object to none.
  • B. 192.168.1.0/24
  • C. 0.0.0.0/0
  • D. 10.0.5.0/24


Answer : D

Refer to the exhibit.

Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?

  • A. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.
  • B. FortiManager ignored the firewall service category General and deleted the duplicate value in its database.
  • C. FortiManager ignored the firewall service category General but created a new service category in its database.
  • D. FortiManager ignored the firewall service category General and did not update its database with the value.


Answer : C

Refer to the exhibit.

An administrator is about to add the FortiGate device to FortiManager using the discovery process. FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings.
What is the expected result?

  • A. During discovery, FortiManager sets both the FortiManager NATed IP address and NAT device IP address on FortiGate.
  • B. During discovery, FortiManager uses only the FortiGate serial number to establish the connection.
  • C. During discovery, FortiManager sets the FortiManager NATed IP address on FortiGate.
  • D. During discovery, FortiManager sets the NATed device IP address on FortiGate.


Answer : C

Page:    1 / 3   
Total 38 questions