FCP_FGT_AD-7.4試験無料問題集（91題）「Fortinet FCP

出題：1

Refer to the exhibit.

Which statement about this firewall policy list is true?

A. The firewall policies are listed by ID sequence view.

B. LAN to WAN. WAN to LAN. and Implicit are sequence grouping view lists.

C. The firewall policies are listed by ingress and egress interfaces pairing view.

D. The Implicit group can include more than one deny firewall policy.

正解：B 解答を投票する

出題：2

Which two features of IPsec IKEv1 authentication are supported by FortiGate? (Choose two.)

A. Extended authentication (XAuth) for faster authentication because fewer packets are exchanged

B. No certificate is required on the remote peer when you set the certificate signature as the authentication method

C. Extended authentication (XAuth)to request the remote peer to provide a username and password

D. Pre-shared key and certificate signature as authentication methods

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

Refer to the exhibit.

Which algorithm does SD-WAN use to distribute traffic that does not match any of the SD-WAN rules?

A. All traffic from a source IP to a destination IP is sent to the same interface.

B. Traffic is sent to the link with the lowest latency.

C. All traffic from a source IP is sent to the same interface

D. Traffic is distributed based on the number of sessions through each interface.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Refer to the exhibits.

FGT-1 and FGT-2 are updated with HA configuration commands shown in the exhibit.
What would be the expected outcome in the HA cluster?

A. FGT-1 will remain the primary because FGT-2 has lower priority.

B. The HA cluster will become out of sync because the override setting must match on all HA members.

C. FGT-2 will take over as the primary because it has the override enable setting and higher priority than FGT-1.

D. FGT-1 will synchronize the override disable setting with FGT-2.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

An administrator configured a FortiGate to act as a collector for agentless polling mode.
What must the administrator add to the FortiGate device to retrieve AD user group information?

A. DHCP server

B. RADIUS server

C. LDAP server

D. Windows server

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Refer to the exhibits.

The exhibits show the application sensor configuration and the Excessive-Bandwidth and Apple filter details.
Based on the configuration, what will happen to Apple FaceTime if there are only a few calls originating or incoming?

A. Apple FaceTime will be allowed, based on the Apple filter configuration.

B. Apple FaceTime will be blocked, based on the Excessive-Bandwidth filter configuration.

C. Apple FaceTime will be allowed only if the Apple filter in Application and Filter Overrides is set to Allow.

D. Apple FaceTime will be allowed, based on the Video/Audio category configuration.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which two statements are correct when FortiGate enters conserve mode? (Choose two.)

A. FortiGate refuses to accept configuration changes

B. FortiGate continues to run critical security actions, such as quarantine.

C. FortiGate halts complete system operation and requires a reboot to regain available resources

D. FortiGate continues to transmit packets without IPS inspection when the fail-open global setting in IPS is enabled

正解：A,D 解答を投票する

出題：8

Refer to the exhibit showing a FortiGuard connection debug output.

Based on the output, which two facts does the administrator know about the FortiGuard connection? (Choose two.)

A. A local FortiManaqer is one of the servers FortiGate communicates with.

B. FortiGate is using default FortiGuard communication settings.

C. There is at least one server that lost packets consecutively.

D. One server was contacted to retrieve the contract information.

正解：B,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Refer to the exhibit.

The NOC team connects to the FortiGate GUI with the NOC_Access admin profile. They request that their GUI sessions do not disconnect too early during inactivity.
What must the administrator configure to answer this specific request from the NOC team?

A. Increase the admintimeout value under config system global

B. Increase the admintimeout value under config system accprofile super_admin.

C. Increase the offline value of the Override idle Timeout parameter in the NOC_Access admin profile

D. Enable the parameter Never Timeout in the admin profiles

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

FCP_FGT_AD-7.4試験無料問題集「Fortinet FCP - FortiGate 7.4 Administrator 認定」