This page was exported from Exams Labs Braindumps [ http://blog.examslabs.com ] Export date:Sun Nov 24 22:20:45 2024 / +0000 GMT ___________________________________________________ Title: Fortinet NSE5_FMG-6.4 Test Engine Dumps Training With 60 Questions [Q32-Q53] --------------------------------------------------- Fortinet NSE5_FMG-6.4 Test Engine Dumps Training With 60 Questions NSE5_FMG-6.4 Questions Pass on Your First Attempt Dumps for NSE 5 Network Security Analyst Certified Fortinet NSE5_FMG-6.4 Exam Syllabus Topics: TopicDetailsTopic 1Install device level configuration changes Perform initial configurationTopic 2Identify how the ADOM version affects policy and object configurations Troubleshoot device communication issuesTopic 3Configure administrative domains (ADOMs) Troubleshoot device and ADOM databasesTopic 4Manage registered devices Configure security fabric using central management   Q32. Which two settings must be configured for SD-WAN Central Management? (Choose two.)  SD-WAN must be enabled on per-ADOM basis  You can create multiple SD-WAN interfaces per VDOM  When you configure an SD-WAN, you must specify at least two member interfaces.  The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies. Q33. View the following exhibit.Which one of the following statements is true regarding the object named ALL?  FortiManager updated the object ALL using FortiGate’s value in its database  FortiManager updated the object ALL using FortiManager’s value in its database  FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.  FortiManager installed the object ALL with the updated value. Q34. Refer to the exhibit.An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.What is the purpose of this command?  It allows FortiGate to unset central management settings.  It allows FortiGate to reboot and recover the previous configuration from its configuration file.  It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.  It allows FortiGate to reboot and restore a previously working firmware image. Q35. Refer to the exhibit.Which two statements about an ADOM set in Normal mode on FortiManager are true? (Choose two.)  It supports the FortiManager script feature  It allows making configuration changes for managed devices on FortiManager panes  FortiManager automatically installs the configuration difference in revisions on the managed FortiGate  You cannot assign the same ADOM to multiple administrators “FortiGate units in the ADOM will query their own configuration every 5 seconds. If there has been a configuration change, the FortiGate unit will send a diff revision on the change to the FortiManager using the FGFM protocol.”Q36. In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?  Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device  Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.  Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.  FortiManager HA state transition is transparent to administrators and does not require any reconfiguration. FortiManager_6.4_Study_Guide-Online – page 346FortiManager HA doesn’t support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:1. Manually reconfigure one of the secondary devices to become the primary device2. Reconfigure all other secondary devices to point to the new primary deviceQ37. View the following exhibit:How will FortiManager try to get updates for antivirus and IPS?  From the list of configured override servers with ability to fall back to public FDN servers  From the configured override server list only  From the default server fdsl.fortinet.com  From public FDNI server with highest index number only Q38. An administrator wants to delete an address object that is currently referenced in a firewall policy.What can the administrator expect to happen?  FortiManager will not allow the administrator to delete a referenced address object  FortiManager will disable the status of the referenced firewall policy  FortiManager will replace the deleted address object with the none address object in the referenced firewall policy  FortiManager will replace the deleted address object with all address object in the referenced firewall policy Q39. Refer to the exhibit.Which statement about the object named ALL is true?  FortiManager updated the object ALL using the FortiGate value in its database.  FortiManager installed the object ALL with the updated value.  FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate.  FortiManager updated the object ALL using the FortiManager value in its database. Q40. View the following exhibit.When using Install Config option to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)  Once initiated, the install process cannot be canceled and changes will be installed on the managed device  Will not create new revision in the revision history  Installs device-level changes to FortiGate without launching the Install Wizard  Provides the option to preview configuration changes prior to installing them Q41. Which three settings are the factory default settings on FortiManager? (Choose three.)  Username is admin  Password is fortinet  FortiAnalyzer features are disabled  Reports and Event Monitor panes are enabled  port1 interface IP address is 192.168.1.99/24 Q42. What does the diagnose dvm check-integrity command do? (Choose two.)  Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM syntax  Verifies and corrects unregistered, registered, and deleted device states  Verifies and corrects database schemas in all object tables  Verifies and corrects duplicate VDOM entries 6.2 Study Guide page 305 verify and correct parts of the device manager databases, including: – inconsistent device-to-group and group-to-ADOM memberships – unregistered, registered, and deleted device states – device lock statuses – duplicate VDOM entriesQ43. What does a policy package status of Conflict indicate?  The policy package reports inconsistencies and conflicts during a Policy Consistency Check.  The policy package does not have a FortiGate as the installation target.  The policy package configuration has been changed on both FortiManager and the managed device independently.  The policy configuration has never been imported after a device was registered on FortiManager. Q44. An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?  When creating a new policy package, the administrator can select the option to assign the global policy package to the new policy package  When a new policy package is created, the administrator needs to reapply the global policy package to ADOM1.  When a new policy package is created, the administrator must assign the global policy package from the global ADOM.  When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package. Q45. Which two statements regarding device management on FortiManager are true? (Choose two.)  FortiGate devices in HA cluster devices are counted as a single device.  FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.  FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.  The maximum number of managed devices for each ADOM is 500. Q46. Refer to the exhibits.Exhibit one.Exhibit two.An administrator created a new system template named Training with two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.What can be the main reason for these unset commands?  The DNS addresses in the default system settings are the same as the Training system template  The Training system template has other default settings  The ADOM is locked by another administrator  The Training system template does not have assigned devices Q47. An administrator has enabled Service Access on FortiManager.What is the purpose of Service Access on the FortiManager interface?  Allows FortiManager to download IPS packages  Allows FortiManager to respond to request for FortiGuard services from FortiGate devices  Allows FortiManager to run real-time debugs on the managed devices  Allows FortiManager to automatically configure a default route Q48. View the following exhibit.Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?  The Install On column value represents successful installation on the managed devices  Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets  Policy seq#3 will be installed on the Trainer[NAT] VDOM only  Policy seq#3 will be not installed on any managed device Q49. An administrator would like to create an SD-WAN using central management in the Training ADOM.To create an SD-WAN using central management, which two steps must be completed? (Choose two.)  Specify a gateway address when you create a default SD-WAN static route  Enable SD-WAN central management in the Training ADOM  Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN template settings  Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces Q50. Which two statements about the scheduled backup of FortiManager are true? (Choose two.)  It does not back up firmware images saved on FortiManager.  It can be configured using the CLI and GUI.  It backs up all devices and the FortiGuard database.  It supports FTP, SCP, and SFTP. Q51. Which two items does an FGFM keepalive message include? (Choose two.)  FortiGate uptime  FortiGate license information  FortiGate IPS version  FortiGate configuration checksum Q52. An administrator would like to create an SD-WAN default static route for a newly created SD-WAN using the FortiManager GUI. Both port1 and port2 are part of the SD-WAN member interfaces.Which interface must the administrator select in the static route device drop-down list?  port2  virtual-wan-link  port1  auto-discovery Q53. Refer to the following exhibit:Which of the following statements are true based on this configuration? (Choose two.)  The same administrator can lock more than one ADOM at the same time  Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out  Unlocking an ADOM will submit configuration changes automatically to the approval administrator  Unlocking an ADOM will install configuration automatically on managed devices  Loading … NSE5_FMG-6.4 Practice Test Pdf Exam Material: https://www.examslabs.com/Fortinet/NSE-5-Network-Security-Analyst/best-NSE5_FMG-6.4-exam-dumps.html --------------------------------------------------- Images: https://blog.examslabs.com/wp-content/plugins/watu/loading.gif https://blog.examslabs.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2022-07-30 09:33:07 Post date GMT: 2022-07-30 09:33:07 Post modified date: 2022-07-30 09:33:07 Post modified date GMT: 2022-07-30 09:33:07