Page: 1
/ 3
Total 38 questions
An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1.
What will happen to the Fortinet policy package?
- A. When the Fortinet policy package is created, it automatically assigns the global policies.
- B. When the Fortinet policy package is created, you can select the option to assign the global policies.
- C. When the Fortinet policy package is created, you need to reapply the global policy package to the ADOM.
- D. When the Fortinet policy package is created, you need to assign the global policy package from the global ADOM.
Answer : A
What is the advantage of using FortiManager to manage FortiAnalyzer?
- A. It allows FortiManager to act as a collector and FortiAnalyzer device.
- B. It allows FortiManager to manage all FortiGate devices.
- C. It allows FortilManager to run reports based on FortiAnalyzer.
- D. It allows FortiManager to store all managed FortiGate device logs.
Answer : A
Which two items are included in the FortiManager backup? (Choose two.)
- A. FortiGuard database
- B. Firmware images
- C. Flash configuration
- D. All devices
Answer : CD
An administrator has enabled Service Access on FortiManager.
What is the purpose of Service Access on the FortiManager interface?
- A. It allows administrative access to FortiManager.
- B. It allows FortiManager to respond to requests for FortiGuard services from FortiGate devices.
- C. It allows FortiManager to determine the connection status of managed devices.
- D. It allows third-party applications to gain read/write access to FortiManager.
Answer : B
Refer to the exhibit.
Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
- A. An administrator can also lock the Local-FortiGate-1 policy package.
- B. The FortiManager ADOM is locked by the administrator.
- C. The FortiManager ADOM mode is set to Normal.
- D. FortiManager is in workflow mode.
Answer : AD
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?
- A. Policy packages will be imported into the new ADOM automatically.
- B. Any pending device settings will be installed automatically.
- C. The shared policy package will not be moved to the new ADOM.
- D. Any unused objects from a previous ADOM are moved to the new ADOM automatically.
Answer : A
Which two statements regarding device management on FortiManager are true? (Choose two.)
- A. FortiGate devices in an HA cluster are counted as a single device.
- B. FortiGate devices in transparent mode configurations are not counted toward the device count on FortiManager.
- C. The maximum number of managed devices for each ADOM is 500.
- D. FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
Answer : AD
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>.
What device name and serial number must the administrator use?
- A. The device name of the new device and serial number of the failed device
- B. The device name and serial number of the new device
- C. The device name and serial number of the failed device
- D. The device name of the failed device and serial number of the new device
Answer : D
Refer to the exhibit.
Review the Download Import Report.
Why is it failing to import firewall policy ID 1?
- A. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
- B. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.
- C. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
- D. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.
Answer : D
Which two items does an FGFM keepalive message include? (Choose two.)
- A. FortiGate IPS version
- B. FortiGate uptime
- C. FortiGate configuration checksum
- D. FortiGate license information
Answer : AC
Refer to the exhibit.
Given the configuration shown in the exhibit, what are two results from this configuration? (Choose two.)
- A. Two or more administrators can make configuration changes at the same time, in the same ADOM.
- B. Concurrent read-write access to an ADOM is disabled.
- C. You can validate administrator login attempts through external servers.
- D. The same administrator can lock more than one ADOM at the same time.
Answer : BD
Refer to the exhibit.
What is the purpose of setting ADOM Mode to Advanced?
- A. This setting enables the ADOMs feature on FortiManager.
- B. This setting allows you to assign a VDOM when offline mode is enabled.
- C. This setting disables concurrent ADOM access and adds ADOM locking.
- D. This setting allows you to assign a VDOM from a single device to a different ADOM.
Answer : D
Refer to the exhibit.
An administrator has created a firewall address object that is used in multiple policy packages for multiple FortiGate devices in an ADOM.
After the installation operation is performed, which IP/netmask will be shown on FortiManager for this firewall address object?
- A. The FortiManager replaces the address object to none.
- B. 192.168.1.0/24
- C. 0.0.0.0/0
- D. 10.0.5.0/24
Answer : D
Refer to the exhibit.
Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?
- A. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.
- B. FortiManager ignored the firewall service category General and deleted the duplicate value in its database.
- C. FortiManager ignored the firewall service category General but created a new service category in its database.
- D. FortiManager ignored the firewall service category General and did not update its database with the value.
Answer : C
Refer to the exhibit.
An administrator is about to add the FortiGate device to FortiManager using the discovery process. FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings.
What is the expected result?
- A. During discovery, FortiManager sets both the FortiManager NATed IP address and NAT device IP address on FortiGate.
- B. During discovery, FortiManager uses only the FortiGate serial number to establish the connection.
- C. During discovery, FortiManager sets the FortiManager NATed IP address on FortiGate.
- D. During discovery, FortiManager sets the NATed device IP address on FortiGate.
Answer : C
30 days access 