• Home
  • Blogs
  • Real NSE5_FMG-7.2 Dumps - Fortinet Correct Answers updated on 2024 [Q57-Q78]

Real NSE5_FMG-7.2 Dumps - Fortinet Correct Answers updated on 2024 [Q57-Q78]

Share

Use Real NSE5_FMG-7.2 Dumps - Fortinet Correct Answers updated on 2024

NSE 5 Network Security Analyst NSE5_FMG-7.2 Exam Practice Dumps


Fortinet NSE 5 - FortiManager 7.2 Certification Exam is a professional-level certification that is designed to validate the skills and knowledge of network administrators and security professionals who work with Fortinet products. NSE5_FMG-7.2 exam is designed to test an individual's ability to configure, manage, and troubleshoot a FortiManager system. Fortinet NSE 5 - FortiManager 7.2 certification is ideal for those who are looking to enhance their career in the field of network security.

 

NEW QUESTION # 57
Refer to the exhibit.

According to the error message why is FortiManager failing to add the FortiAnalyzer device?

  • A. The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface
  • B. The administrator must turn off the Use Legacy Device login and add the FortiAnalyzer device to the same network as Forti-Manager
  • C. The administrator must use the Add Model Device section and discover the FortiAnalyzer device
  • D. The administrator must use the correct user name and password of the FortiAnalyzer device

Answer: B


NEW QUESTION # 58
What will happen if FortiAnalyzer features are enabled on FortiManager?

  • A. FortiManager will reboot
  • B. FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager
  • C. FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices
  • D. FortiManager can be used only as a logging device.

Answer: A

Explanation:
Reference:https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FortiManager_Admin_Guide/1800_FAZ%20Features/0


NEW QUESTION # 59
What will happen if FortiAnalyzer features are enabled on FortiManager?

  • A. FortiManager will reboot
  • B. FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager
  • C. FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices
  • D. FortiManager can be used only as a logging device.

Answer: A


NEW QUESTION # 60
What does a policy package status ofModifiedindicate?

  • A. The Policy package configuration has been changed on FortiManager and changes have not yet been installed on the managed device.
  • B. The Policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager
  • C. The policy package was never imported after a device was registered on FortiManager
  • D. FortiManager is unable to determine the policy package status

Answer: C

Explanation:
Reference:http://help.fortinet.com/fmgr/50hlp/56/5-6-1/FortiManager_A
dmin_Guide/1200_Policy%20and%20Objects/0800_Managing%20policy%20packages/2200_Policy%20Packag


NEW QUESTION # 61
View the following exhibit:

An administrator used the value shown in the exhibit when importing a Local-FortiGate into FortiManager. What name will be used to display the firewall policy for port1?

  • A. WAN zone on FortiGate and WAN zone on FortiManager
  • B. port1 on both FortiGate and FortiManager
  • C. port1 on FortiGate and WAN on FortiManager
  • D. WAN zone on FortiGate and WAN interface on FortiManager

Answer: C


NEW QUESTION # 62
Refer to the exhibit.

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

  • A. The Device Settings Status will be tagged as Modified
  • B. You must install these changes using the Install Wizard to a managed device
  • C. The successful execution of a script on the Device Database will create a new revision history
  • D. The script history will show successful installation of the script on the remote FortiGate

Answer: A,B


NEW QUESTION # 63
Refer to the exhibits.
Exhibit one.

Exhibit two.

An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.
What can be the main reason for these unset commands?

  • A. The ADOM is locked by another administrator
  • B. The Training system template has other default settings
  • C. The DNS addresses in the default system settings are the same as the Training system template
  • D. The Training system template does not have assigned devices

Answer: B


NEW QUESTION # 64
Which three settings are the factory default settings on FortiManager? (Choose three.)

  • A. Password is fortinet
  • B. FortiAnalyzer features are disabled
  • C. port1 interface IP address is 192.168.1.99/24
  • D. Reports and Event Monitor panes are enabled
  • E. Username is admin

Answer: B,C,E


NEW QUESTION # 65
View the following exhibit, which shows the Download Import Report:

Why it is failing to import firewall policy ID 2?

  • A. The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
  • B. Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
  • C. Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
  • D. Policy ID 2 does not have ADOM Interface mapping configured on FortiManager

Answer: A

Explanation:
FortiManager_6.4_Study_Guide-Online - page 331 & 332


NEW QUESTION # 66
What will be the result of reverting to a previous revision version in the revision history?

  • A. It will tag the device settings status asAuto-Update
  • B. It will modify the device-level database
  • C. It will install configuration changes to managed device automatically
  • D. It will generate a new versionIDand remove all other revision history versions

Answer: B


NEW QUESTION # 67
What does a policy package status ofModifiedindicate?

  • A. The Policy package configuration has been changed on FortiManager and changes have not yet been installed on the managed device.
  • B. The Policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager
  • C. The policy package was never imported after a device was registered on FortiManager
  • D. FortiManager is unable to determine the policy package status

Answer: C


NEW QUESTION # 68
View the following exhibit.

An administrator has created a firewall address object, Training, which is used in the Local-FortiGate policy package. When the install operation is performed, which IP Netmask will be installed on the Local-FortiGate, for the Training firewall address object?

  • A. 10.0.1.0/24
  • B. Local-FortiGate will automatically choose an IP Network based on its network interface settings.
  • C. 192.168.0.1/24
  • D. It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values

Answer: A


NEW QUESTION # 69
View the following exhibit.

What is the purpose of settingADOM ModetoAdvanced?

  • A. The setting disables concurrent ADOM access and adds ADOM locking
  • B. The setting enables the ADOMs feature on FortiManager
  • C. The setting allows automatic updates to the policy package configuration for a managed device
  • D. This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs.

Answer: D

Explanation:
Reference:https://docs.fortinet.com/document/fortianalyzer/7.0.0/administration-guide/66530/adom-device-mode


NEW QUESTION # 70
An administrator has added all the devices in a Security Fabric group to FortiManager.
How does the administrator identify the root FortiGate?

  • A. By an at symbol (@) at the end of the device name
  • B. By an Asterisk (*) at the end of the device name
  • C. Question mark(?) at the end of the device name
  • D. By a dollar symbol ($) at the end of the device name

Answer: B


NEW QUESTION # 71
Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

  • A. It allows the same administrator to lock more than one ADOM at the same time.
  • B. It allows two or more administrators to make configuration changes at the same time, in the same ADOM.
  • C. It is used to validate administrator login attempts through external servers.
  • D. It disables concurrent read-write access to an ADOM.

Answer: A,D

Explanation:
Reference:https://docs.fortinet.com/document/fortimanager/6.0.4/administration-guide/86456/concurrentadom-ac


NEW QUESTION # 72
View the following exhibit.

Which statement is true regarding this failed installation log?

  • A. Policy ID 2 will not be installed
  • B. Policy ID 2 is installed in disabled state
  • C. Policy ID 2 is installed without a source device
  • D. Policy ID 2 is installed without a source address

Answer: A


NEW QUESTION # 73
Which two items does an FGFM keepalive message include? (Choose two.)

  • A. FortiGate IPS version
  • B. FortiGate configuration checksum
  • C. FortiGate license information
  • D. FortiGate uptime

Answer: A,B


NEW QUESTION # 74
An administrator would like to create an SD-WAN using central management. What steps does the administrator need to perform to create an SD-WAN using central management?

  • A. First create an SD-WAN firewall policy, add member interfaces to the SD-WAN template and create a static route
  • B. Remove all the interface references such as routes or policies
  • C. You must specify a gateway address when you create a default static route
  • D. Enable SD-WAN central management in the ADOM, add member interfaces, create a static route and SDWAN firewall policies.

Answer: D


NEW QUESTION # 75
What does the diagnose dvm check-integrity command do? (Choose two.)

  • A. Verifies and corrects database schemas in all object tables
  • B. Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM syntax
  • C. Verifies and corrects duplicate VDOM entries
  • D. Verifies and corrects unregistered, registered, and deleted device states

Answer: C,D

Explanation:
6.2 Study Guide page 305
verify and correct parts of the device manager databases, including:
- inconsistent device-to-group and group-to-ADOM memberships
- unregistered, registered, and deleted device states
- device lock statuses
- duplicate VDOM entries


NEW QUESTION # 76
Which two items are included in the FortiManager backup? (Choose two.)

  • A. All devices
  • B. FortiGuard database
  • C. Logs
  • D. Global database

Answer: A,D


NEW QUESTION # 77
In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

  • A. Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
  • B. FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
  • C. Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
  • D. Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

Answer: D

Explanation:
FortiManager_6.4_Study_Guide-Online - page 346
FortiManager HA doesn't support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:
1. Manually reconfigure one of the secondary devices to become the primary device
2. Reconfigure all other secondary devices to point to the new primary device


NEW QUESTION # 78
......


Fortinet NSE5_FMG-7.2 certification exam is designed to test the knowledge and skills of IT professionals who are responsible for managing and deploying FortiManager appliances in enterprise networks. Fortinet NSE 5 - FortiManager 7.2 certification is part of the Fortinet Network Security Expert (NSE) program, which is a comprehensive training and certification program that validates the knowledge and skills of network security professionals.


Fortinet NSE5_FMG-7.2 certification exam covers a range of topics, including FortiManager administration, device registration and management, policy and object management, and reporting and analysis. Candidates who pass the exam demonstrate their ability to deploy and manage FortiManager appliances, configure policies and objects, and analyze network traffic and security events.

 

Get ready to pass the NSE5_FMG-7.2 Exam right now using our NSE 5 Network Security Analyst Exam Package: https://testoutce.pass4leader.com/Fortinet/NSE5_FMG-7.2-exam.html

Related Blogs

more
Fortinet NSE5_FMG-7.2 Certification Practice Exam