NSE5_FMG-7.2 Fortinet NSE 5 - FortiManager 7.2 Questions and Answers

The policy package reports inconsistencies and conflicts during a Policy Consistency Check.

The policy package does not have a FortiGate as the installation target.

The policy package configuration has been changed on both FortiManager and the managed device

independently.

The policy configuration has never been imported after a device was registered on FortiManager.

Restore the configuration from a previous backup.

Log in as Super_User in order to unlock the ADOM.

Log in using the same administrator account to unlock the ADOM.

Delete the previous admin session manually through the FortiManager GUI or CLI.

Device name and serial number of the original device.

Device name and serial number of the replacement device.

Device name of the replacement device and serial number of the original device.

Device name of the original device and serial number of the replacement device.

Device-level database

Revision history database

ADOM-level database

Configuration-level database

FortiGuard database

Global database

Logs

All devices

The administrator logged in using the unsecure protocol HTTP, so the view is restricted.

The administrator profile does not have full access privileges like the Super_User profile.

The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.

FortiAnalyzer features are not enabled on FortiManager.

The API command has enabled both central NAT and interface policy on the policy tab.

The API command has requested the policy tab permissions information only.

The API command has failed when requesting policy tab permissions information.

The API command has applied to customer with ID: 200.

The device name of the new device and serial number of the failed device

The device name and serial number of the failed device

The device name of the failed device and serial number of the new device

The device name and serial number of the new device

FortiManager ignored the firewall service category General but created a new service category in its database.

FortiManager ignored the firewall service category general and deleted the duplicate value In Its database

FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.

FortiManager ignored the firewall service category General and did not update Its database with the value

This setting will enable the ADOMs feature on FortiManager.

This setting is applied globally to all ADOMs.

This setting will allow assigning different VDOMs from the same FortiGate to different ADOMs.

This setting will allow automatic updates to the policy package configuration for a managed device.

The administrator must turn off the Use Legacy Device login and add the FortiAnalyzer device to the same network as Forti-Manager

The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface

The administrator must use the Add Model Device section and discover the FortiAnalyzer device

The administrator must use the correct user name and password of the FortiAnalyzer device

That the virtual IP address and correct ports are set on the NAT device

That the NAT device IP address and correct ports are configured on FortiManager

That the external IP address on the NAT device is set to DHCP and configured with the virtual IP

That the override server IP address is set on FortiManager and the NAT device

Admin A can access VDOM2 and VDOM3 with the super user profile.

The FortiManager policies and objects database can be shared between the Financial and HR ADOMs.

The administrator must set the FortiManager ADOM mode to Advanced.

The administrator must configure FortiManager in workspace mode.

10.0.1.0/24

It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values

192.168.0.1/24

Local-FortiGate will automatically choose an IP Network based on its network interface settings.

From the list of configured override servers or public FDN servers

From the default server fds1.fortinet.com

From the configured override server IP address 10.0.1.50 only

From public FDNI server IP address with the fourth highest octet only

It does not back up firmware images saved on FortiManager.

It can be configured using the CLI and GUI.

It backs up all devices and the FortiGuard database.

It supports FTP, SCP, and SFTP.

FortiGate uptime

FortiGate license information

FortiGate IPS version

FortiGate configuration checksum

The administrator had restored the FortiManager configuration file

The administrator must refresh both devices to restore connectivity

FortiManager test internet connectivity therefore, both devices appear to be down

The administrator can reclaim the FGFM tunnel to get both devices online

The latest revision history for the managed FortiGate does match with the FortiGate running configuration

Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed

The latest history for the managed FortiGate does not match with the device-level database

Configuration changes directly made on the FortiGate have been automatically updated to device-level

database

VIP and IP Pools

Firewall policies

Security profiles

Routing

Set to workflow and use the ADOM locking feature

Set to read/write and use the policy locking feature

Set to normal and use the policy locking feature

Set to disable and use the policy locking feature

When configuration revision is reverted to previous revision in the revision history

When FortiManager installs device-level changes to a managed device

When FortiManager is auto-updated with configuration changes made directly on a managed device

When changes to device-level database is made on FortiManager

It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.

It installs the latest configuration on the specified FortiGate and update the revision history database.

It compares and provides differences in configuration on FortiManager with the current running

configuration of the specified FortiGate.

It installs the provisioning template configuration on the specified FortiGate.

The same administrator can lock more than one ADOM at the same time

Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out

Unlocking an ADOM will submit configuration changes automatically to the approval administrator

Unlocking an ADOM will install configuration automatically on managed devices

The FortiGate will be added automatically to the default ADOM named FortiGate.

The FortiGate will be automatically added to the Training ADOM.

By default, the unregistered FortiGate will appear in the root ADOM.

The FortiManager administrator must add the unregistered device manually to the unregistered device

manually to the Training ADOM using the Add Device wizard

Username is admin

Password is fortinet

FortiAnalyzer features are disabled

Reports and Event Monitor panes are enabled

port1 interface IP address is 192.168.1.99/24