最上級のNSE5_FAZ-6.4試験問題Fortinetテスト最高成績で最速合格をゲットせよ!
試験準備には最適なNSE5_FAZ-6.4試験問題2022年最新のNSE 5 Network Security Analyst究極な88問があります
Fortinet NSE5_FAZ-6.4 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
質問 13
Which two constraints can impact the amount of reserved disk space required by FortiAnalyzer? (Choose two.)
- A. Disk size
- B. RAID level
- C. Total quota
- D. License type
正解: B,C
解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/368682/disk-space-allocation
質問 14
On FortiAnalyzer, what is a wildcard administrator account?
- A. An account that permits access to members of an LDAP group
- B. An account that requires two-factor authentication
- C. An account that validates against any user account on a FortiAuthenticator
- D. An account that allows guest access with read-only privileges
正解: A
解説:
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-admin-accounts
質問 15
An administrator has moved FortiGate A from the root ADOM to ADOM1.
Which two statements are true regarding logs? (Choose two.)
- A. Logs will be presented in both ADOMs immediately after the move.
- B. Analytics logs will be moved to ADOM1 from the root ADOM automatically.
- C. Archived logs will be moved to ADOM1 from the root ADOM automatically.
- D. Analytics logs will be moved to ADOM1 from the root ADOM after you rebuild the ADOM1 SQL database.
正解: A,C
質問 16
What statements are true regarding FortiAnalyzer 's treatment of high availability (HA) dusters? (Choose two)
- A. FortiAnalyzer receives logs from d devices in a duster.
- B. FortiAnalyzer receives bgs only from the primary device in the cluster.
- C. FortiAnalyzer distinguishes different devices by their serial number.
- D. FortiAnalyzer only needs to know (he serial number of the primary device in the cluster-it automaticaly discovers the other devices.
正解: A,C
質問 17
Which clause is considered mandatory in SELECT statements used by the FortiAnalyzer to generate reports?
- A. FROM
- B. ORDER BY
- C. WHERE
- D. LIMIT
正解: A
解説:
Reference:
質問 18
The admin administrator is failing to register a FortiClient EMS on the FortiAnalyzer device.
What can be the reason for this failure?
- A. FortiAnalyzer is in an HA cluster.
- B. ADOMs are not enabled on FortiAnalyzer.
- C. A separate license is required on FortiAnalyzer in order to register the FortiClient EMS device.
- D. ADOM mode should be set to advanced, in order to register the FortiClient EMS device.
正解: B
質問 19
What is the purpose of a dataset query in FortiAnalyzer?
- A. It injects log data into the database
- B. It sorts log data into tables
- C. It retrieves log data from the database
- D. It extracts the database schema
正解: C
質問 20
For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:
- A. Use real-time forwarding
- B. Use DNS
- C. Use host name resolution
- D. Use an NTP server
正解: D
質問 21
Which two statements are true regarding FortiAnalyzer log forwarding? (Choose two.)
- A. Forwarding mode forwards logs in real time only to other FortiAnalyzer devices.
- B. Both modes, forwarding and aggregation, support encryption of logs between devices.
- C. In aggregation mode, you can forward logs to syslog and CEF servers as well.
- D. Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.
正解: B,D
質問 22
What must you configure on FortiAnalyzer to upload a FortiAnalyzer report to a supported external server?
(Choose two.)
- A. Mail server
- B. SFTP, FTP, or SCP server
- C. Report scheduling
- D. Output profile
正解: B,D
解説:
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/6d9f8fb5-6cf4-11e9-81a4-00505692583a/FortiAnalyzer-6.0.5-Administration-Guide.pdf page 119 There is an option for "uploading reports to server" under configuring the output profile. The available options are: SFTP, FTP and SCP. You have to be careful on the question itself. The question tells you to "upload reports to a server (external server). Which means, a server has been configured already in this case prior to enabling the "upload reports to server".
質問 23
You have recently grouped multiple FortiGate devices into a single ADOM. System Settings > Storage Info shows the quota used.
What does the disk quota refer to?
- A. The maximum disk utilization for the FortiAnalyzer model
- B. The maximum disk utilization for the ADOM type
- C. The maximum disk utilization for each device in the ADOM
- D. The maximum disk utilization for all devices in the ADOM
正解: D
質問 24
An administrator has moved FortiGate A from the root ADOM to ADOM1. However, the administrator is not able to generate reports for FortiGate A in ADOM1.
What should the administrator do to solve this issue?
- A. Use the execute sql-local rebuild-adom ADOM1 command to rebuild the ADOM database.
- B. Use the execute sql-local rebuild-db command to rebuild all ADOM databases.
- C. Use the execute sql-local rebuild-adom root command to rebuild the ADOM database.
- D. Use the execute sql-report run ADOM1 command to run a report.
正解: A
質問 25
Which two statements are true regarding log fetching on FortiAnalyzer? (Choose two.)
- A. Log fetching allows the administrator to fetch analytics logs from another FortiAnalyzer for redundancy.
- B. Log fetching allows the administrator to run queries and reports against historical data by retrieving archived logs from one FortiAnalyzer device and sending them to another FortiAnalyzer device.
- C. Log fetching can be done only on two FortiAnalyzer devices that are running the same firmware version.
- D. A FortiAnalyzer device can perform either the fetch server or client role, and it can perform two roles at the same time with the same FortiAnalyzer devices at the other end.
正解: C,D
質問 26
View the exhibit.
What does the data point at 14:35 tell you?
- A. FortiAnalyzer is dropping logs.
- B. FortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed.
- C. FortiAnalyzer is indexing logs faster than logs are being received.
- D. The sqlplugind daemon is ahead in indexing by one log.
正解: C
解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/47690/insert-rate-vs-receive-rate-widget
質問 27
If you upgrade the FortiAnalyzer firmware, which report element can be affected?
- A. Custom datasets
- B. Report settings
- C. Report scheduling
- D. Output profiles
正解: C
解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/upgrade-guide/669300/checking-reports
質問 28
Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with SSL? (Choose two.)
- A. SSL encryption levels are globally set on FortiAnalyzer.
- B. SSL communications are auto-negotiated between the two devices.
- C. SSL is the default setting.
- D. SSL can send logs in real-time only.
- E. FortiAnalyzer encryption level must be equal to, or higher than, FortiGate.
正解: A,C
質問 29
In FortiAnalyzer's FormView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IPs, without introducing any additional performance impact to FortiAnalyzer?
- A. Resolve IPs on a per-ADOM basis to reduce delay on FortiView while IPs resolve
- B. Resolve IPs on FortiGate
- C. Configure # set resolve-ip enable in the system FortiView settings
- D. Configure local DNS servers on FortiAnalyzer
正解: B
質問 30
A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer.
What can you do on FortiAnalyzer to accomplish this?
- A. Click FortiView and generate a report for that administrator.
- B. Click Task Monitor and view the tasks performed by that administrator.
- C. View the tasks performed by the rogue administrator in Fabric View.
- D. Click Log View and generate a report for that administrator.
正解: B
質問 31
What can the CLI command # diagnose test application oftpd 3 help you to determine?
- A. What ADOMs are enabled and configured
- B. What devices are registered and unregistered
- C. What devices and IP addresses are connecting to FortiAnalyzer
- D. What logs, if any, are reaching FortiAnalyzer
正解: C
解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/cli-reference/395556/test#test_application
質問 32
Which statements are correct regarding FortiAnalyzer reports? (Choose two)
- A. FortiAnalyzer provides the ability to create custom reports.
- B. FortiAnalyzer allows reporting for FortiGate devices only.
- C. FortiAnalyzer includes pre-defined reports only.
- D. FortiAnalyzer glows you to schedule reports to run.
正解: A,D
質問 33
Refer to the exhibit.
What does the data point at 14:55 tell you?
- A. Raw logs are reaching FortiAnalyzer faster than they can be indexed
- B. The received rate is almost at its maximum for this device
- C. Logs are being dropped
- D. The sqlplugind daemon is behind in log indexing by two logs
正解: A
質問 34
Which FortiAnalyzer feature allows you to retrieve the archived logs matching a specific timeframe from another FortiAnalyzer device?
- A. Log upload
- B. Log fetching
- C. Log forwarding an aggregation mode
- D. Indicators of Compromise
正解: B
解説:
https://docs.fortinet.com/document/fortianalyzer/6.2.0/administration-guide/651442/fetcher-management
質問 35
If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?
- A. Shut down FortiAnalyzer and replace the disk
- B. Hot swap the disk
- C. Replace the disk and rebuild the RAID manually
- D. Take no action if the RAID level supports a failed disk
正解: A
解説:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD46446#:~:text=On%20FortiAnalyzer%2FFortiManager%20devices%20that,to%20exchanging%20the%20hard%20disk.
If a hard disk on a FortiAnalyzer unit fails, it must be replaced. On FortiAnalyzer devices that support hardware RAID, the hard disk can be replaced while the unit is still running - known as hot swapping. On FortiAnalyzer units with software RAID, the device must be shutdown prior to exchanging the hard disk.
質問 36
What are two of the key features of FortiAnalyzer? (Choose two.)
- A. Reports
- B. Centralized log repository
- C. Cloud-based management
- D. Virtual domains (VDOMs)
正解: A,B
質問 37
How does FortiAnalyzer retrieve specific log data from the database?
- A. SQL SELECT statement
- B. SQL GET statement
- C. SQL EXTRACT statement
- D. SQL FROM statement
正解: D
解説:
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/137bb60e-ff37-11e8-8524-f8bc1258b856/fortianalyzer-fortigate-sql-technote-40-mr2.pdf
質問 38
......
注目のNSE5_FAZ-6.4豪華セット試験ガイドで最速合格を目指そう:https://www.jpntest.com/shiken/NSE5_FAZ-6.4-mondaishu