Labour Day Sale Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 713PS592

  1. Home
  2. Fortinet
  3. NSE 7 Network Security Architect
  4. NSE7_PBC-6.4
  5. Fortinet NSE 7 - Public Cloud Security 6.4 Questions and Answers
Note! The NSE7_PBC-6.4 Exam is no longer available. Get in touch with our Live Chat or email us for more information about the NSE7_PBC-7.2 Exam.

NSE7_PBC-6.4 Fortinet NSE 7 - Public Cloud Security 6.4 Questions and Answers

Questions 4

Refer to the exhibit.

NSE7_PBC-6.4 Question 4

You are deploying a FortiGate-VM in Microsoft Azure using the PAYG/On-demand licensing model. After you configure the FortiGate-VM, the validation process fails, displaying the error shown in the exhibit.

What caused the validation process to fail?

Options:

A.

You selected the incorrect resource group.

B.

You selected the Bring Your Own License (BYOL) licensing mode.

C.

You selected the PAYG/On-demand licensing model, but did not select correct virtual machine size.

D.

You selected the PAYG/On-demand licensing model, but did not associate a valid Azure subscription.

Buy Now
Questions 5

Refer to the exhibit.

NSE7_PBC-6.4 Question 5

Your senior administrator successfully configured a FortiGate fabric connector with the Azure resource manager, and created a dynamic address object on the FortiGate VM to connect with a windows server in Microsoft Azure. However, there is now an error on the dynamic address object, and you must resolve the issue.

How do you resolve this issue?

Options:

A.

Run diagnose debug application azd -l on FortiGate.

B.

In the Microsoft Azure portal, set the correct tag values for the windows server.

C.

In the Microsoft Azure portal, access the windows server, obtain the private IP address, and assign the IP address under the FortiGate-VM AzureLab address object.

D.

Delete the address object and recreate a new address object with the type set to FQDN.

Buy Now
Questions 6

Refer to the exhibit.

NSE7_PBC-6.4 Question 6

Which two conditions will enable you to segregate and secure the traffic between the hub and the spokes in Microsoft Azure? (Choose two.)

Options:

A.

Implement the FortiGate-VM network virtual appliance (NVA) in the hub and use user-defined routes (UDRs) in the spokes.

B.

Use ExpressRoute to interconnect the hub VNets and spoke VNets.

C.

Configure VNet peering between the spokes only.

D.

Configure VNet peering between the hub and spokes.

Buy Now
Questions 7

You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.

Which Amazon AWS services must you subscribe to in order to use this feature?

Options:

A.

GuardDuty, CloudWatch, S3, Inspector, WAF, and Shield.

B.

GuardDuty, CloudWatch, S3, and DynamoDB.

C.

Inspector, Shield, GuardDuty, S3, and DynamoDB.

D.

WAF, Shield, GuardDuty, S3, and DynamoDB.

Buy Now
Questions 8

Which statement about FortiSandbox in Amazon Web Services (AWS) is true?

Options:

A.

In AWS, virtual machines (VMs) that inspect files do not have to be reset after inspecting a file.

B.

FortiSandbox in AWS uses Windows virtual machines (VMs) to inspect files.

C.

In AWS, virtual machines (VMs) that inspect files are constantly up and running.

D.

FortiSandbox in AWS can have a maximum of eight virtual machines (VMs) that inspect files.

Buy Now
Questions 9

Refer to the exhibit.

NSE7_PBC-6.4 Question 9

You attempted to deploy the FortiGate-VM in Microsoft Azure with the JSON template, and it failed to boot up. The exhibit shows an excerpt from the JSON template.

What is incorrect with the template?

Options:

A.

The LUN ID is not defined.

B.

FortiGate-VM does not support managedDisk from Azure.

C.

The caching parameter should be None.

D.

The CreateOptions parameter should be FromImage.

Buy Now
Exam Code: NSE7_PBC-6.4
Exam Name: Fortinet NSE 7 - Public Cloud Security 6.4
Last Update: Dec 11, 2023
Questions: 30