لا تريد أن تفوت شيئا؟

نصائح اجتياز امتحان الشهادة

آخر أخبار الامتحانات ومعلومات الخصم

برعاية وحديثة من قبل خبرائنا

نعم، أرسل لي النشرة الإخبارية

خذ اختبارات أخرى عبر الإنترنت

السؤال #1
A customer wants to be able to index your websites for search and advertisement purposes. What is the easiest way to allow this on a FortiWeb?
A. Add the indexer IP address to the trusted IP list on the FortiWeb
B. Add the indexer IP address to the FortiGuard "Known Search Engines" category
C. Create a firewall rule to bypass the FortiWeb entirely for the indexer IP address
D. Do not allow any external sites to index your websites
عرض الإجابة
اجابة صحيحة: A
السؤال #2
In FortiWeb, which component is responsible for handling incoming traffic and applying security policies?
A. FortiGate
B. Server pool
C. Web Application Firewall (WAF)correct
D. FortiManager
عرض الإجابة
اجابة صحيحة: C
السؤال #3
When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical? (Choose two)
A. Defines Log file formatcorrect
B. Defines communication protocol
C. Defines Database Schema
D. Defines Log storage locationcorrect
عرض الإجابة
اجابة صحيحة: AD
السؤال #4
Which of the following is a common challenge when implementing bot mitigation techniques?
A. Incompatibility with web browsers
B. Difficulty in distinguishing between legitimate and malicious botscorrect
C. Increased server response times
D. Lack of support for mobile devices
عرض الإجابة
اجابة صحيحة: B
السؤال #5
Which HTTP response code is commonly used to indicate a permanent redirection in application delivery?
A. 200 OK
B. 301 Moved Permanentlycorrect
C. 404 Not Found
D. 500 Internal Server Error
عرض الإجابة
اجابة صحيحة: B
السؤال #6
Refer to the exhibit. If rule 1 matches http://bwapp.fortinet.demo, rule 2 matches http://dvwa.fortinet.demo, and the default web protection profile is the inline protection profile, which protection profile will be applied to a connection to http://petstore.fortinet.demo?
A. bwappcorrect
B. policy1
C. dwva
D. Inline protection profile
عرض الإجابة
اجابة صحيحة: A
السؤال #7
Refer to the exhibit. What are two additional configuration elements that you must be configure for this API gateway? (Choose two.)
A. You must define rate limits
B. You must define URL prefixes
C. You must select a setting in the Allow User Group field
D. You must enable and configure Host Status
عرض الإجابة
اجابة صحيحة: AB
السؤال #8
Which three statements about HTTPS on FortiWeb are true? (Choose three.)
A. For TLS inspection, you must upload the server certificate and key to FortiWeb
B. In transparent inspection mode, FortiWeb supports the same cipher suites as reverse proxy mode
C. In reverse proxy mode, FortiWeb can re-encrypt connections to the protected web servers
D. You can choose which SSL/TLS protocol versions are supported by FortiWeb when clients connect to a virtual server
عرض الإجابة
اجابة صحيحة: ACD
السؤال #9
What is a common technique to mitigate Cross-Site Scripting (XSS) attacks in web applications?
A. Input validation and escapingcorrect
B. Encryption of user passwords
C. Captcha verification for login forms
D. SSL/TLS encryption
عرض الإجابة
اجابة صحيحة: A
السؤال #10
Which compliance standards often require encryption and secure authentication for web applications? (Select all that apply)
A. GDPR (General Data Protection Regulation)correct
B. HIPAA (Health Insurance Portability and Accountability Act)correct
C. PCI DSS (Payment Card Industry Data Security Standard)correct
D. ISO 9001 (Quality Management System)
عرض الإجابة
اجابة صحيحة: ABC
السؤال #11
In which two operating modes can FortiWeb modify HTTP packets? (Choose two.)
A. True transparent proxy
B. Virtual proxy
C. Transparent inspection
D. Reverse proxy
عرض الإجابة
اجابة صحيحة: BD
السؤال #12
How can you mitigate attacks on authentication processes in a web application? (Select all that apply)
A. Implement multi-factor authentication (MFA)correct
B. Use secure password hashing algorithmscorrect
C. Disable all authentication mechanisms
D. Implement account lockout policiescorrect
عرض الإجابة
اجابة صحيحة: ABD
السؤال #13
Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?
A. Sensitive info masking
B. Session Managementcorrect
C. Poison Cookie detection
D. Brute Force blocking
عرض الإجابة
اجابة صحيحة: B
السؤال #14
Under which circumstances does FortiWeb use its own certificates? (Choose Two)
A. HTTPS to clientscorrect
B. HTTPS access to GUIcorrect
C. HTTPS to FortiGate
D. Secondary HTTPS connection to server where FortiWeb acts as a clientcorrect
عرض الإجابة
اجابة صحيحة: ABD
السؤال #15
When configuring threat mitigation features for a web application, what is the primary purpose of rate limiting?
A. Preventing brute force attackscorrect
B. Identifying malicious IP addresses
C. Encrypting sensitive data
D. Optimizing web server performance
عرض الإجابة
اجابة صحيحة: A
السؤال #16
When the FortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?
A. IP Address of the Virtual Server on the FortiWeb
B. Virtual Server IP on the FortiGatecorrect
C. Server's real IP
D. FortiWeb's real IP
عرض الإجابة
اجابة صحيحة: B
السؤال #17
Which of the following steps is essential for troubleshooting deployment and system-related issues in FortiWeb?
A. Clearing browser cache
B. Disabling firewall policies
C. Collecting logs and diagnostic informationcorrect
D. Increasing server pool capacity
عرض الإجابة
اجابة صحيحة: C
السؤال #18
Which regex expression is the correct format for redirecting the URL http://www.example.com?
A. www/
B. www\
C. www
D. www\example\com
عرض الإجابة
اجابة صحيحة: C
السؤال #19
Which implementation is most suited for a deployment that must meet PCI DSS compliance criteria?
A. SSL offloading with FortiWeb in reverse proxy mode
B. SSL offloading with FortiWeb in PCI DSS mode
C. SSL offloading with FortiWeb in transparency mode
D. SSL offloading with FortiWeb in full transparent proxy mode
عرض الإجابة
اجابة صحيحة: B
السؤال #20
An attacker attempts to send an SQL injection attack containing the known attack string 'root'; - - through an API call. Which FortiWeb inspection feature will be able to detect this attack the quickest?
A. API gateway rule
B. Known signatures
C. Machine learning (ML) - based API protection — anomaly detection
D. ML - based API protection — threat detection
عرض الإجابة
اجابة صحيحة: B
السؤال #21
What is a common technique to mitigate Cross-Site Scripting (XSS) attacks in web applications?
A. Input validation and escapingcorrect
B. Encryption of user passwords
C. Captcha verification for login forms
D. SSL/TLS encryption
عرض الإجابة
اجابة صحيحة: A
السؤال #22
Which compliance standards often require encryption and secure authentication for web applications? (Select all that apply)
A. GDPR (General Data Protection Regulation)correct
B. HIPAA (Health Insurance Portability and Accountability Act)correct
C. PCI DSS (Payment Card Industry Data Security Standard)correct
D. ISO 9001 (Quality Management System)
عرض الإجابة
اجابة صحيحة: ABC
السؤال #23
An attacker attempts to send an SQL injection attack containing the known attack string 'root'; -- through an API call.Which FortiWeb inspection feature will be able to detect this attack the quickest?
A. API gateway rule
B. Known signatures
C. Machine learning (ML)-based API protection---anomaly detection
D. ML-based API protection---threat detection
عرض الإجابة
اجابة صحيحة: B
السؤال #24
In SAML deployments, which server contains user authentication credentials (username/password)?
A. Identity provider
B. Service provider
C. User database
D. Authentication client
عرض الإجابة
اجابة صحيحة: A
السؤال #25
When configuring access control for a web application, which methods can be used to enforce security? (Select all that apply)
A. IP whitelisting
B. Role-based access control (RBAC)
C. Captcha verification
D. Two-factor authentication (2FA)
عرض الإجابة
اجابة صحيحة: AB
السؤال #26
What can an administrator do if a client has been incorrectly period blocked?
A. Nothing, it is not possible to override a period block
B. Manually release the ID address from the temporary blacklist
C. Force a new IP address to the client
D. Disconnect the client from the network
عرض الإجابة
اجابة صحيحة: B
السؤال #27
Which implementation is most suited for a deployment that must meet PCI DSS compliance criteria?
A. SSL offloading with FortiWeb in reverse proxy mode
B. SSL offloading with FortiWeb in PCI DSS mode
C. SSL offloading with FortiWeb in transparency mode
D. SSL offloading with FortiWeb in full transparent proxy mode
عرض الإجابة
اجابة صحيحة: B
السؤال #28
What should you consider when troubleshooting threat detection and mitigation-related issues in a web application? (Select all that apply)
A. Reviewing web server logscorrect
B. Analyzing firewall policiescorrect
C. Disabling security features temporarily
D. Collecting and analyzing traffic datacorrect
عرض الإجابة
اجابة صحيحة: ABD
السؤال #29
In FortiWeb, which component is responsible for handling incoming traffic and applying security policies?
A. FortiGate
B. Server pool
C. Web Application Firewall (WAF)correct
D. FortiManager
عرض الإجابة
اجابة صحيحة: C
السؤال #30
Which implementation is most suited for a deployment that must meet PCI DSS compliance criteria?
A. SSL offloading with FortiWeb in reverse proxy mode
B. SSL offloading with FortiWeb in PCI DSS mode
C. SSL offloading with FortiWeb in transparency mode
D. SSL offloading with FortiWeb in full transparent proxy mode
عرض الإجابة
اجابة صحيحة: B

View The Updated Fortinet Exam Questions

SPOTO Provides 100% Real Fortinet Exam Questions for You to Pass Your Fortinet Exam!

عرض الإجابات بعد التقديم

يرجى إرسال البريد الإلكتروني الخاص بك والواتس اب للحصول على إجابات الأسئلة.

ملحوظة: يرجى التأكد من صلاحية معرف البريد الإلكتروني وWhatsApp حتى تتمكن من الحصول على نتائج الاختبار الصحيحة.

بريد إلكتروني:
رقم الواتس اب/الهاتف: