DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Comprehensive Fortinet NSE5_FMG-7.2 Practice Tests and Exam Resources, Fortinet NSE 5 FortiManager 7.2 | SPOTO

Preparing for the Fortinet NSE5-FMG 7.2 Network Security certification exam? Ensure you have the best resources with SPOTO's comprehensive practice tests and materials. Our constantly updated exam dumps contain thousands of premium practice questions and answers closely mirroring the real exam content. In-depth mock exams and online exam questions allow you to test your skills deploying, managing, and monitoring Fortinet security solutions in a realistic environment. Detailed explanations with verified sample questions pinpoint areas for further study. SPOTO provides all the essential exam materials you need - practice tests, exam simulators, study guides and more - from a trusted leader in NSE5_FMG-7.2 certification training.
Take other online exams
Question #1
Which of the following statements are true regarding an FGFM keepalive message? (Choose two.)
A. It includes the configuration checksum of FortiGate
B. The keepalive interval for keepalive messages is configured on FortiGate
C. It is sent only by FortiGate
D. It is used between FortiManager HA cluster members to make sure cluster members are in sync
View answer
Correct Answer: BD
Question #2
Which of the following statements are true regarding schedule backup of FortiManager? (Choose two.)
A. Backs up all devices and the FortiGuard database
B. Does not back up firmware images saved on FortiManager C
View answer
Correct Answer: BC
Question #3
View the following exhibit: An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student However, Trainer is unable to approve the workflow session. What can prevent an admin account that has Super_User rights over the device from approving a workflow session?
A. Trainer must close Student's workflow session before approving the request
B. Trainer does not have full rights over this ADOM
C. Trainer is not a part of workflow approval group
D. Student, who submitted the workflow session, must first self-approve the request
View answer
Correct Answer: C
Question #4
View the following exhibit: Which one of the following statements is true regarding installation targets in the Install On column?
A. Policy seq
B. Policy seq
C. Policy seq
D. The Install On column value represents successful installations on the managed devices
View answer
Correct Answer: C
Question #5
When installation is performed from the FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?
A. After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down
B. FortiGate will reject the CLI commands that will cause the tunnel to go down
C. FortiManager will revert and install a previous configuration revision on the managed FortiGate
D. FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down
View answer
Correct Answer: C
Question #6
Which of the following conditions trigger FortiManager to create a new revision history? (Choose two.)
A. When FortiManager installs device-level changes to a managed device
B. When configuration revision is reverted to previous revision in the revision history
C. When changes to device-level database is made on FortiManager
D. When FortiManager is auto-updated with configuration changes made directly on a managed device
View answer
Correct Answer: AC
Question #7
An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package, Fortinet, in the custom ADOM1. Which statement about the global policy package assignment to the newly-created policy package Fortinet is true? A.When a new policy package is created, it automatically assigns the global policies to the new package.
B. When a new policy package is created, you need to assign the global policy package from the global ADOM
View answer
Correct Answer: A
Question #8
What is the purpose of ADOM revisions?
A. To create System Checkpoints for the FortiManager configuration
B. To save the current state of the whole ADOM
View answer
Correct Answer: C
Question #9
What is the purpose of the Policy Check feature on FortiManager?
A. To find and merge duplicate policies in the policy package
B. To find and provide recommendation to combine multiple separate policy packages into one common policy package
C. To find and delete disabled firewall policies in the policy package
D. To find and provide recommendation for optimizing policies in a policy package
View answer
Correct Answer: A
Question #10
An administrator configures a new firewall policy on FortiManager and has not yet pushed the changes to the managed FortiGate. In which database will the configuration be saved?
A. Device-level database
B. Revision history database C
View answer
Correct Answer: C
Question #11
What are the factory default settings on FortiManager? (Choose three.)
A. Password is fortinet
B. port1 interface IP address is 192
C. Service Access is enabled on port1
D. Username is admin
E. Reports and Event Monitor panes are enabled
View answer
Correct Answer: BCD
Question #12
What does a policy package status of Conflict indicate?
A. The policy package reports inconsistencies and conflicts during a Policy Consistency Check
B. The policy package does not have a FortiGate as the installation target
View answer
Correct Answer: C
Question #13
What will be the result of reverting to a previous revision version in the revision history?
A. It will install configuration changes to managed device automatically B
View answer
Correct Answer: D
Question #14
Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
A. It allows two or more administrators to make configuration changes at the same time, in the same ADOM
B. It disables concurrent read-write access to an ADOM
View answer
Correct Answer: BC
Question #15
An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes. What is the purpose of this command?
A. It allows FortiGate to unset central management settings
B. It allows FortiGate to reboot and recover the previous configuration from its configuration file
View answer
Correct Answer: B
Question #16
Which two items are included in the FortiManager backup? (Choose two.)
A. FortiGuard database
B. Global database C
View answer
Correct Answer: BD
Question #17
View the following exhibit. Which one of the following statements is true regarding the object named ALL?
A. FortiManager updated the object ALL using FortiGate’s value in its database
B. FortiManager updated the object ALL using FortiManager’s value in its database C
View answer
Correct Answer: A
Question #18
What does the diagnose dvm check-integrity command do? (Choose two.)
A. Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM syntax
B. Verifies and corrects unregistered, registered, and deleted device states C
View answer
Correct Answer: BD
Question #19
View the following exhibit: What of the following statements are true regarding the output? (Choose two.)
A. Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
B. The latest revision history for the managed FortiGate does match with the FortiGate running configuration
C. The latest revision history for the managed FortiGate does not match with the device-level database
D. Configuration changes directly made on the FortiGate have been automatically updated to device-level database
View answer
Correct Answer: AD
Question #20
An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit. Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)
A. The administrator logged in using the unsecure protocol HTTP, so the view is restricted
B. The administrator profile does not have full access privileges like the Super_User profile
View answer
Correct Answer: BD
Question #21
An administrator’s PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
A. Restore the configuration from a previous backup
B. Log in as Super_User in order to unlock the ADOM
View answer
Correct Answer: D
Question #22
As a result of enabling FortiAnalyzer features on FortiManager, which one of the following statements is true?
A. FortiManager can be used only as a logging device
B. FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices
C. FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager
D. FortiManager will reboot
View answer
Correct Answer: C
Question #23
View the following exhibit: An administrator has created a firewall address object. Training, which is used in the Local-FortiGate policy package. When the install operation is performed, which IP/Netmask will be installed on the Local-FortiGate, for the Training firewall address object?
A. 192
B. It will create firewall address group on Local-FortiGate with 192
C. Local-FortiGate will automatically choose an IP/Netmask based on its network interface settings
D. 10
View answer
Correct Answer: C
Question #24
Which of the following statements are true based on this configuration setting? (Choose two.)
A. This setting will enable the ADOMs feature on FortiManager
B. This setting is applied globally to all ADOMs
C. This setting will allow assigning different VDOMs from the same FortiGate to different ADOMs
D. This setting will allow automatic updates to the policy package configuration for a managed device
View answer
Correct Answer: BC
Question #25
View the following exhibit; Which one of the following statements is true regarding the object named ALL?
A. FortiManager updated the object ALL using FortiManager's value in its database
B. FortiManager updated the object ALL using FortiGate's value in its database
C. FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate
D. FortiManager installed the object ALL with the updated value
View answer
Correct Answer: C
Question #26
An administrator would like to create an SD-WAN default static route for a newly created SD-WAN using the FortiManager GUI. Both port1 and port2 are part of the SD-WAN member interfaces. Which interface must the administrator select in the static route device drop-down list? A.port2 B.virtual-wan-link C.port1 D.auto-discovery
An administrator would like to create an SD-WAN default static route for a newly created SD-WAN using the FortiManager GUI. Both port1 and port2 are part of the SD-WAN member interfaces
View answer
Correct Answer: B
Question #27
Which two statements about an ADOM set in Normal mode on FortiManager are true? (Choose two.)
A. It supports the FortiManager script feature
B. It allows making configuration changes for managed devices on FortiManager panes C
View answer
Correct Answer: AB
Question #28
An administrator has enabled Service Access on FortiManager. What is the purpose of Service Access on the FortiManager interface?
A. Allows FortiManager to download IPS packages
B. Allows FortiManager to respond to request for FortiGuard services from FortiGate devices C
View answer
Correct Answer: B
Question #29
An administrator would like to create an SD-WAN using central management. What steps does the administrator need to perform to create an SD-WAN using central management?
A. First create an SD-WAN firewall policy, add member interfaces to the SD-WAN template and create a static route
B. You must specify a gateway address when you create a default static route C
View answer
Correct Answer: D
Question #30
An administrator is replacing a device on FortiManager by running the following command: execute device replace sn . What device name and serial number must the administrator use?
A. Device name and serial number of the original device
B. Device name and serial number of the replacement device
View answer
Correct Answer: D
Question #31
In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?
A. Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
B. FortiManager HA state transition is transparent to administrators and does not require any reconfiguration
C. Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device
D. Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device
View answer
Correct Answer: C
Question #32
An administrator has created a firewall address object, Training which is used in the Local-FortiGate policy package. When the installation operation is performed, which IP/Netmask will be installed on the Local- FortiGate, for the Training firewall address object?
A. 192
B. 10
View answer
Correct Answer: B

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number:


Copyright © 2024. Designer by SPOTO Official Website. All Rights Reserved.