NSE5_FCT-7.0試験問題集合格できるには更新された2023年05月テスト問題集 [Q16-Q36]

NSE5_FCT-7.0試験問題集合格できるには更新された2023年05月テスト問題集

NSE5_FCT-7.0テスト問題練習は2023年最新のに更新された52問あります

質問 # 16
Refer to the exhibit.

Which shows multiple endpoint policies on FortiClient EMS.
Which policy is applied to the endpoint in the AD group trainingAD?

A. The Sales policy
B. The Default policy because it has the highest priority
C. The Training policy
D. Both the Sales and Training policies because their priority is higher than the Default policy

正解：D

質問 # 17
Refer to the exhibit.

Which shows the output of the ZTNA traffic log on FortiGate.
What can you conclude from the log message?

A. The remote user connection does not match the ZTNA firewall policy
B. The remote user connection does not match the ZTNA rule configuration.
C. The remote user connection does not match the explicit proxy policy.
D. The remote user connection does not match the ZTNA server configuration.

正解：B

質問 # 18
Refer to the exhibit.

Based on the FortiClient log details shown in the exhibit, which two statements are true? (Choose two.)

A. The file status is Quarantined
B. The filename is sent to ForuSandbox for further inspection.
C. The filename is Unconfirmed 899290 .crdownload.
D. The file location IS \??\D:\Users\.

正解：A、C

質問 # 19
Refer to the exhibit.

Which shows FortiClient EMS deployment profiles.
When an administrator creates a deployment profile on FortiClient EMS, which statement about the deployment profile is true?

A. Deployment-2 will upgrade FortiClient on both the AD group and workgroup
B. Deployment-1 will upgrade FortiClient only on the workgroup
C. Deployment-2 will install FortiClient on both the AD group and workgroup
D. Deployment-1 will install FortiClient on new AD group endpoints

正解：A

質問 # 20
Which security fabric component sends a notification to quarantine an endpoint after IOC detection in the automation process?

A. FortiClient
B. FortiAnalyzer
C. ForbClient EMS
D. Forti Gate

正解：A

質問 # 21
Refer to the exhibits.

Which shows the configuration of endpoint policies.
Based on the configuration, what will happen when someone logs in with the user account student on an endpoint in the trainingAD domain?

A. FortiClient EMS will assign the Training policy for on-fabric endpoints and the Sales policy for the off-fabric endpoint
B. FortiClient EMS will assign the Sales policy
C. FortiClient EMS will assign the Default policy
D. FortiClient EMS will assign the Training policy

正解：D

質問 # 22
Refer to the exhibits, which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.

An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.
What is the cause of this issue?

A. Remote-Client has not initiated a connection to the ZTNA access proxy.
B. Remote-Client failed the client certificate authentication.
C. Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.
D. Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.

正解：A

質問 # 23
Refer to the exhibits.

Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

A. The administrator must enable remote HTTPS access to EMS.
B. The administrator must enable SSH access to EMS.
C. The administrator must enable FQDN on EMS.
D. The administrator must authorize FortiGate on FortiAnalyzer.

正解：A

質問 # 24
Refer to the exhibits.

Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

A. The administrator must enable remote HTTPS access to EMS.
B. The administrator must enable SSH access to EMS.
C. The administrator must enable FQDN on EMS.
D. The administrator must authorize FortiGate on FortiAnalyzer.

正解：A

質問 # 25
An administrator configures ZTNA configuration on the FortiGate for remote users. Which statement is true about the firewall policy?

A. It redirects the client request to the access proxy
B. It enforces access control
C. It applies security profiles to protect traffic
D. It defines the access proxy

正解：A

解説：
"The firewall policy matches and redirects client requests to the access proxy VIP" https://docs.fortinet.com/document/fortigate/7.0.0/new-features/194961/basic-ztna-configuration

質問 # 26
Refer to the exhibit, which shows the Zero Trust Tagging Rule Set configuration.

Which two statements about the rule set are true? (Choose two.)

A. The endpoint must satisfy that only Windows 10 is running.
B. The endpoint must satisfy that only AV software is installed and running.
C. The endpoint must satisfy that antivirus is installed and running and Windows 10 is running.
D. The endpoint must satisfy that only Windows Server 2012 R2 is running.

正解：B、C

質問 # 27
A new chrome book is connected in a school's network.
Which component can the EMS administrator use to manage the FortiClient web filter extension installed on the Google Chromebook endpoint?

A. FortiClient site categories
B. FortiClient web filter extension
C. FortiClient customer URL list

正解：A

質問 # 28
Refer to the exhibit.

Based on the logs shown in the exhibit, why did FortiClient EMS fail to install FortiClient on the endpoint?

A. The remote registry service is not running
B. The Windows installer service is not running
C. The task scheduler service is not running.
D. The FortiClient antivirus service is not running

正解：C

質問 # 29
What is the function of the quick scan option on FortiClient?

A. It scans programs and drivers that are currently running, for threats.
B. It scans executable files, DLLs, and drivers that are currently running, for threats.
C. It performs a full system scan including all files, executable files, DLLs, and drivers for threats.
D. It allows users to select a specific file folder on their local hard disk drive (HDD), to scan for threats.

正解：A

質問 # 30
Which two statements are true about ZTNA? (Choose two.)

A. ZTNA provides a security posture check
B. ZTNA manages access through the client only
C. ZTNA manages access for remote users only
D. ZTNA provides role-based access

正解：C

質問 # 31
What action does FortiClient anti-exploit detection take when it detects exploits?

A. Deletes the compromised application process
B. Terminates the compromised application process
C. Patches the compromised application process
D. Blocks memory allocation to the compromised application process

正解：B

質問 # 32
Which two benefits are benefits of using multi-tenancy mode on FortiClient EMS? (Choose two.)

A. Separate host servers manage each site.
B. Licenses are shared among sites.
C. It provides granular access and segmentation.
D. The fabric connector must use an IP address to connect to FortiClient EMS

正解：C

質問 # 33
Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which endpoint profile policy is currently applied to the FortiClient endpoint from the EMS server?