NSE5_FMG-7.0練習試験テスト最新問題2024年04月 [Q13-Q28]

Share

NSE5_FMG-7.0練習試験テスト最新問題2024年04月

NSE5_FMG-7.0試験を一発合格保証問題集!

質問 # 13
Which configuration setting for FortiGate is part of an ADOM-level database on FortiManager?

  • A. Security profiles
  • B. Routing
  • C. SNMP
  • D. NSX-T Service Template

正解:A


質問 # 14
An administrator has added all the devices in a Security Fabric group to FortiManager.
How does the administrator identify the root FortiGate?

  • A. By a dollar symbol ($) at the end of the device name
  • B. By a
  • C. By an at symbol (@) at the end of the device name
  • D. By an Asterisk (*) at the end of the device name

正解:D


質問 # 15
Refer to the exhibit.

You are using the Quick Install option to install configuration changes on the managed FortiGate.
Which two statements correctly describe the result? (Choose two.)

  • A. It installs device-level changes to FortiGate without launching the Install Wizard
  • B. It provides the option to preview configuration changes prior to installing them
  • C. It cannot be canceled once initiated and changes will be installed on the managed device
  • D. It will not create a new revision in the revision history

正解:A、C

解説:
FortiManager_6.4_Study_Guide-Online - page 164
The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing. Administrator should be certain of the changes before using this install option, because the install can't be cancelled after the process is initiated.


質問 # 16
An administrator has enabled Service Access on FortiManager.
What is the purpose of Service Access on the FortiManager interface?

  • A. Allows FortiManager to download IPS packages
  • B. Allows FortiManager to run real-time debugs on the managed devices
  • C. Allows FortiManager to automatically configure a default route
  • D. Allows FortiManager to respond to request for FortiGuard services from FortiGate devices

正解:D


質問 # 17
In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

  • A. Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
  • B. Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
  • C. FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
  • D. Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

正解:D

解説:
FortiManager_6.4_Study_Guide-Online - page 346
FortiManager HA doesn't support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:
1. Manually reconfigure one of the secondary devices to become the primary device
2. Reconfigure all other secondary devices to point to the new primary device


質問 # 18
View the following exhibit.

Which one of the following statements is true regarding the object named ALL?

  • A. FortiManager updated the object ALL using FortiGate's value in its database
  • B. FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.
  • C. FortiManager installed the object ALL with the updated value.
  • D. FortiManager updated the object ALL using FortiManager's value in its database

正解:A


質問 # 19
What does the diagnose dvm check-integrity command do? (Choose two.)

  • A. Verifies and corrects database schemas in all object tables
  • B. Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM
    syntax
  • C. Verifies and corrects unregistered, registered, and deleted device states
  • D. Verifies and corrects duplicate VDOM entries

正解:C、D

解説:
6.2 Study Guide page 305 verify and correct parts of the device manager databases, including: - inconsistent device-to-group and group-to-ADOM memberships - unregistered, registered, and deleted device states - device lock statuses - duplicate VDOM entries


質問 # 20
Which of the following statements are true regarding reverting to previous revision version from the revision history? (Choose two.)

  • A. To push these changes to a managed device, it required an install operation to the managed FortiGate.
  • B. Reverting to a previous revision history will tag the device settings status as Auto-Update.
  • C. Reverting to a previous revision history will generate a new version ID and remove all other history
  • D. It will modify device-level database

正解:A、D


質問 # 21
An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.
Which troubleshooting step should you take to resolve the issue?

  • A. Make sure the administrator IP address is part of the trusted hosts.
  • B. Make sure Offline Mode is disabled
  • C. Make sure FortiManager Access is enabled in the administrator profile
  • D. Make sure ADOMs are enabled and the administrator has access to the Global ADOM

正解:A

解説:
Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.


質問 # 22
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?

  • A. Trainer does not have full rights over this ADOM
  • B. Trainer is not a part of workflow approval group
  • C. Student, who submitted the workflow session, must first self-approve the request
  • D. Trainer must close Student's workflow session before approving the request

正解:B


質問 # 23
View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?

  • A. Policy seq#3 will be installed on the Trainer[NAT] VDOM only
  • B. Policy seq#3 will be not installed on any managed device
  • C. The Install On column value represents successful installation on the managed devices
  • D. Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets

正解:D


質問 # 24
Refer to the exhibit.

Which two statements are true if the script is executed using the Device Database option? (Choose two.)

  • A. The Device Settings Status will be tagged as Modified
  • B. You must install these changes using the Install Wizard to a managed device
  • C. The script history will show successful installation of the script on the remote FortiGate
  • D. The successful execution of a script on the Device Database will create a new revision history

正解:A、B


質問 # 25
Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.
Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)

  • A. The administrator profile does not have full access privileges like the Super_User profile.
  • B. The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
  • C. FortiAnalyzer features are not enabled on FortiManager.
  • D. The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.

正解:A、C


質問 # 26
View the following exhibit.

Which of the following statements are true based on this configuration setting? (Choose two.)

  • A. This setting will allow automatic updates to the policy package configuration for a managed device.
  • B. This setting will allow assigning different VDOMs from the same FortiGate to different ADOMs.
  • C. This setting is applied globally to all ADOMs.
  • D. This setting will enable the ADOMs feature on FortiManager.

正解:B、C


質問 # 27
Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.
Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)

  • A. The administrator profile does not have full access privileges like the Super_User profile.
  • B. The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
  • C. FortiAnalyzer features are not enabled on FortiManager.
  • D. The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.

正解:A、C


質問 # 28
......

NSE 5 Network Security Analyst無料認定試験材料はGoShikenが提供された82問題:https://www.goshiken.com/Fortinet/NSE5_FMG-7.0-mondaishu.html

NSE5_FMG-7.0問題集完全版問題試験学習ガイド:https://drive.google.com/open?id=1yQ4DbHSaiVxse0_O6gfExNmsnXYPuxL6

関するブログ

もっと
NSE5_FMG-7.0無料問題集