最新のNSE5_FMG-7.0試験問題集でFortinet試験にはトレーニングを提供しています [Q12-Q33]

最新のNSE5_FMG-7.0試験問題集でFortinet試験にはトレーニングを提供しています

合格できるFortinet Fortinet NSE 5 - FortiManager 7.0のPDF問題集は最近更新された74問あります

質問 # 12
Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

• A. The Security Fabric license, group name and password are required for the FortiManager Security Fabric
  integration
• B. The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
• C. The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
• D. The Security Fabric settings are part of the device level settings

正解：C、D

質問 # 13
An administrator would like to create an SD-WAN using central management. What steps does the administrator need to perform to create an SD-WAN using central management?

• A. You must specify a gateway address when you create a default static route
• B. First create an SD-WAN firewall policy, add member interfaces to the SD-WAN template and create a static route
• C. Remove all the interface references such as routes or policies
• D. Enable SD-WAN central management in the ADOM, add member interfaces, create a static route and SDWAN firewall policies.

正解：D

質問 # 14
An administrator would like to authorize a newly-installed AP using AP Manager. What steps does the administrator need to perform to authorize an AP?

• A. Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.
• B. Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.
• C. Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.
• D. Changes to the AP's state must be performed directly on the managed FortiGate.

正解：A

質問 # 15
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?

• A. Any unused objects from a previous ADOM are moved to the new ADOM automatically
• B. Any pending device settings will be installed automatically
• C. Policy packages will be imported into the new ADOM automaticallyD
• D. The shared policy package will not be moved to the new ADOM

正解：D

質問 # 16
An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

• A. When a new policy package is created, the administrator must assign the global policy package from the global ADOM.
• B. When creating a new policy package, the administrator can select the option to assign the global policy
  package to the new policy package
• C. When a new policy package is created, the administrator needs to reapply the global policy package to
  ADOM1.
• D. When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package.

正解：D

質問 # 17
What is the purpose of the Policy Check feature on FortiManager?

• A. To find and merge duplicate policies in the policy package
• B. To find and provide recommendation to combine multiple separate policy packages into one common
  policy package
• C. To find and provide recommendation for optimizing policies in a policy package
• D. To find and delete disabled firewall policies in the policy package

正解：C

質問 # 18
Refer to the exhibit.

According to the error message why is FortiManager failing to add the FortiAnalyzer device?

• A. The administrator must use the correct user name and password of the FortiAnalyzer device
• B. The administrator must use the Add Model Device section and discover the FortiAnaJyzer device
• C. The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface
• D. The administrator must turn off the Use Legacy Device login and add the FortiAnaJyzer device to the same network as Forti-Manager

正解：C

質問 # 19
An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

• A. When creating a new policy package, the administrator can select the option to assign the global policy package to the new policy package
• B. When a new policy package is created, the administrator must assign the global policy package from the global ADOM.
• C. When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package.
• D. When a new policy package is created, the administrator needs to reapply the global policy package to ADOM1.

正解：C

質問 # 20
An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.
Which troubleshooting step should you take to resolve the issue?

• A. Make sure FortiManager Access is enabled in the administrator profile
• B. Make sure the administrator IP address is part of the trusted hosts.
• C. Make sure ADOMs are enabled and the administrator has access to the Global ADOM
• D. Make sure Offline Mode is disabled

正解：B

解説：
Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.
Topic 1, Main Questions Pool B

質問 # 21
View the following exhibit.

Which one of the following statements is true regarding the object named ALL?

• A. FortiManager installed the object ALL with the updated value.
• B. FortiManager updated the object ALL using FortiGate's value in its database
• C. FortiManager created the object ALL as a unique entity in its database, which can be only used by this
  managed FortiGate.
• D. FortiManager updated the object ALL using FortiManager's value in its database

正解：B

質問 # 22
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.
How should the Workspace mode be configured on FortiManager?

• A. Set to normal and use the policy locking feature
• B. Set to workflow and use the ADOM locking feature
• C. Set to read/write and use the policy locking feature
• D. Set to disable and use the policy locking feature

正解：B

質問 # 23
View the following exhibit.

Which of the following statements are true based on this configuration setting? (Choose two.)

• A. This setting is applied globally to all ADOMs.
• B. This setting will allow assigning different VDOMs from the same FortiGate to different ADOMs.
• C. This setting will enable the ADOMs feature on FortiManager.
• D. This setting will allow automatic updates to the policy package configuration for a managed device.

正解：A、B

質問 # 24
An administrator configures a new firewall policy on FortiManager and has not yet pushed the changes to the managed FortiGate.
In which database will the configuration be saved?

• A. Configuration-level database
• B. Device-level database
• C. ADOM-level database
• D. Revision history database

正解：C

解説：
https://kb.fortinet.com/kb/documentLink.do?externalID=FD47942

質問 # 25
Which two statements regarding device management on FortiManager are true? (Choose two.)

• A. FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
• B. The maximum number of managed devices for each ADOM is 500.
• C. FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.
• D. FortiGate devices in HA cluster devices are counted as a single device.

正解：A、D

質問 # 26
An administrator wants to delete an address object that is currently referenced in a firewall policy.
What can the administrator expect to happen?

• A. FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
• B. FortiManager will replace the deleted address object with all address object in the referenced firewall policy
• C. FortiManager will not allow the administrator to delete a referenced address object
• D. FortiManager will disable the status of the referenced firewall policy

正解：A

質問 # 27
What does a policy package status of Modified indicate?

• A. FortiManager is unable to determine the policy package status
• B. The policy package was never imported after a device was registered on FortiManager
• C. The Policy package configuration has been changed on FortiManager and changes have not yet been installed on the managed device.
• D. The Policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager

正解：C

質問 # 28
Refer to the exhibit.

According to the error message why is FortiManager failing to add the FortiAnalyzer device?

• A. The administrator must use the correct user name and password of the FortiAnalyzer device
• B. The administrator must use the Add Model Device section and discover the FortiAnaJyzer device
• C. The administrator must turn off the Use Legacy Device login and add the FortiAnaJyzer device to the same network as Forti-Manager
• D. The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface

正解：B

質問 # 29
An administrator would like to create an SD-WAN using central management in the Training ADOM.
To create an SD-WAN using central management, which two steps must be completed? (Choose two.)

• A. Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces
• B. Enable SD-WAN central management in the Training ADOM
• C. Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN template settings
• D. Specify a gateway address when you create a default SD-WAN static route

正解：A、B

質問 # 30
What will happen if FortiAnalyzer features are enabled on FortiManager?

• A. FortiManager will enable ADOMs to collect logs automatically from non-FortiGate devices.
• B. FortiManager can be used only as a logging device.
• C. FortiManager will install the logging configuration to the managed devices
• D. FortiManager will keep all the logs and reports on the FortiManager.

正解：C

質問 # 31
Refer to the exhibit.

Which statement about the object named ALL is true?

• A. FortiManager updated the object ALL using the FortiManager value in its database.
• B. FortiManager installed the object ALL with the updated value.
• C. FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.
• D. FortiManager updated the object ALL using the FortiGate value in its database.

正解：D

質問 # 32
An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.
Which troubleshooting step should you take to resolve the issue?

• A. Make sure FortiManager Access is enabled in the administrator profile
• B. Make sure the administrator IP address is part of the trusted hosts.
• C. Make sure ADOMs are enabled and the administrator has access to the Global ADOM
• D. Make sure Offline Mode is disabled

正解：B

解説：
Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.

質問 # 33
......

Fortinet NSE5_FMG-7.0試験は、FortiManager 7.0での専門知識を習得したいセキュリティ専門家に最適なベンダー固有の認定試験です。試験は、デバイスの登録、設定、ポリシー管理、トラブルシューティングなど、幅広いトピックをカバーしています。この試験は、本番環境でFortiManager 7.0を管理および構成するために必要な知識とスキルを検証するよう設計されています。

 

更新されたテストエンジン練習NSE5_FMG-7.0問題集と練習試験で使おう：https://www.jpntest.com/shiken/NSE5_FMG-7.0-mondaishu