DON'T WANT TO MISS A THING?

Certification Exam Passing Tips

Latest exam news and discount info

Curated and up-to-date by our experts

Yes, send me the newsletter

Fortinet NSE5_FMG-7.2 Certification Exam Answers Solutions for Exam Success, Fortinet NSE 5 FortiManager 7.2 | SPOTO

The Fortinet NSE5-FMG 7.2 Certification is crucial for professionals securing networks and applications with Fortinet products. At SPOTO, we offer comprehensive exam answers and solutions tailored for your exam success. Our study materials include exam questions, sample questions, exam materials, and exam answers. You'll also access practice tests, free tests, and exam dumps to enhance your preparation. Our focus on exam practice and preparation ensures you're ready for the challenges of the Fortinet NSE5-FMG 7.2 exam. Utilize our exam simulator and online exam questions to simulate real exam scenarios. With SPOTO's mock exams and high-quality practice tests, you'll build confidence and expertise for exam day. Choose SPOTO for Fortinet NSE5_FMG-7.2 Certification Exam Answers Solutions and excel in securing networks with Fortinet products.
Take other online exams
Question #1
An administrator is in the process of moving the system template profile between ADOMs by running the following command: execute improfile import-profile ADOM2 3547 /tmp/myfile Where does the administrator import the file from?
A. File system
B. ADOM1
C. ADOM2 object database
D. ADOM2
View answer
Correct Answer: A
Question #2
- (Topic 2) What does a policy package status ofConflictindicate?
A. The policy package reports inconsistencies and conflicts during aPolicy Consistency Check
B. The policy package does not have a FortiGate as the installation target
C. The policy package configuration has been changed on both FortiManager and the managed deviceindependently
D. The policy configuration has never been imported after a device was registered on FortiManager
View answer
Correct Answer: A
Question #3
- (Topic 3) Which of the following statements are true regarding VPN Manager? (Choose three.)
A. VPN Manager must be enabled on a per ADOM basis
B. VPN Manager automatically adds newly-registered devices to a VPN community
C. VPN Manager can install common IPsec VPN settings on multiple FortiGate devices at the same time
D. Common IPsec settings need to be configured only once in a VPN Community for all managed gateways
E. VPN Manager automatically creates all the necessary firewall policies for traffic to be tunneled by IPsec
View answer
Correct Answer: BC
Question #4
An administrator’s PC crashes before the administrator can submit a workflow session for approval. After the PC is restarted, the administrator notices that the ADOM was locked from the session before the crash. How can the administrator unlock the ADOM?
A. Restore the configuration from a previous backup
B. Log in as Super_User in order to unlock the ADOM
C. Log in using the same administrator account to unlock the ADOM
D. Delete the previous admin session manually through the FortiManager GUI or CLI
View answer
Correct Answer: A
Question #5
- (Topic 3) View the following exhibit. When usingInstall Configoption to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)
A. Once initiated, the install process cannot be canceled and changes will be installed on the managed device
B. Will not create new revision in the revision history
C. Installs device-level changes to FortiGate without launching theInstall Wizard
D. Provides the option to preview configuration changes prior to installing them
View answer
Correct Answer: AB
Question #6
- (Topic 3) Which two settings are required for FortiManager Management Extension Applications (MEA)? (Choose two.)
A. When you configure MEA, you must open TCP or UDP port 540
B. You must open the ports to the Fortinet registry
C. You must create a MEA special policy on FortiManager using the super user profile
D. The administrator must have the super user profile
View answer
Correct Answer: C
Question #7
- (Topic 1) Refer to the exhibits. Exhibit one. Exhibit two. An administrator created a new system template namedTrainingwith two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed. What can be the main reason for these unset commands?
A. The DNS addresses in the default system settings are the same as theTrainingsystem template
B. TheTrainingsystem template has other default settings
C. The ADOM is locked by another administrator
D. TheTrainingsystem template does not have assigned devices
View answer
Correct Answer: BD
Question #8
- (Topic 3) An administrator created a header and footer global policy package and assigned it to an ADOM. What are two outcomes from this action? (Choose two.)
A. You must manually move the header and footer policies after the policy assignment
B. After you assign the global policy package to an ADOM, the policy package is hiddenfrom the ADOM and cannot be viewed
C. If you assign an additional global policy package to the same ADOM, FortiManaqer removes previously assigned policies
D. You can edit or delete all the global objects in the global ADOM
View answer
Correct Answer: BD
Question #9
- (Topic 1) An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators. How should the Workspace mode be configured on FortiManager?
A. Set to workflow and use the ADOM locking feature
B. Set to read/write and use the policy locking feature
C. Set to normal and use the policy locking feature
D. Set to disable and use the policy locking feature
View answer
Correct Answer: A
Question #10
- (Topic 2) What is the purpose of ADOM revisions?
A. To createSystem Checkpointsfor the FortiManager configuration
B. To save the current state of the whole ADOM
C. To save the current state of all policy packages and objects for an ADOM
D. To revert individual policy packages and device-level settings for a managed FortiGate by reverting to a specific ADOM revision
View answer
Correct Answer: A
Question #11
- (Topic 2) An administrator has created a firewall address object,Trainingwhich is used in the Local- FortiGate policy package. When the installation operation is performed, which IP/Netmask will be installed on the Local-FortiGate, for theTrainingfirewall address object?
A. 192
B. 10
C. It will create a firewall address group on Local-FortiGate with192
D. Local-FortiGate will automatically choose an IP/Netmask based on its network interface settings
View answer
Correct Answer: A
Question #12
According to the error message why is FortiManager failing to add the FortiAnalyzer device?
A. The administrator must turn off the Use Legacy Device login and add the FortiAnaJyzer device to the same network as Forti-Manager
B. The administrator must select the Forti-Manager administrative access checkbox on the FortiAnalyzer management interface
C. The administrator must use the Add Model Device section and discover the FortiAnaJyzer device
D. The administrator must use the correct user name and password of the FortiAnalyzer device
View answer
Correct Answer: AC
Question #13
- (Topic 2) Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
A. It allows two or more administrators to make configuration changes at the same time, in the same ADOM
B. It disables concurrent read-write access to an ADOM
C. It allows the same administrator to lock more than one ADOM at the same time
D. It is used to validate administrator login attempts through external servers
View answer
Correct Answer: C
Question #14
- (Topic 1) An administrator, Trainer, who is assigned theSuper_Userprofile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session. What can prevent an admin account that hasSuper_Userrights over the device from approving a workflow session?
A. Trainer is not a part of workflow approval group
B. Trainer does not have full rights over this ADOM
C. Trainer must close Student’s workflow session before approving the request
D. Student, who submitted the workflow session, must first self-approve the request
View answer
Correct Answer: ACE
Question #15
- (Topic 1) Which three settings are the factory default settings on FortiManager? (Choose three.)
A. Username is admin
B. Password is fortinet
C. FortiAnalyzer features are disabled
D. Reports and Event Monitor panes are enabled
E. port1 interface IP address is 192
View answer
Correct Answer: B
Question #16
- (Topic 1) An administrator would like to create an SD-WAN using central management in theTrainingADOM. To create an SD-WAN using central management, which two steps must be completed? (Choose two.)
A. Specify a gateway address when you create a default SD-WAN static route
B. Enable SD-WAN central management in theTrainingADOM
C. Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WANtemplate settings
D. Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces
View answer
Correct Answer: C
Question #17
- (Topic 2) An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit. Which two reasons can explain why the FortiAnalyzer feature panesdo notappear? (Choose two.)
A. The administrator logged in using the unsecure protocol HTTP, so the view is restricted
B. The administrator profile does not have full access privileges like theSuper_Userprofile
C. The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces
D. FortiAnalyzer features are not enabled on FortiManager
View answer
Correct Answer: C
Question #18
- (Topic 3) Which two conditions trigger FortiManager to create a new revision history? (Choose two.)
A. When FortiManager is auto-updated with configuration changes made directly on a managed device
B. When changes to the device-level database are made on FortiManager
C. When FortiManager installs device-level changes on a managed device
D. When a configuration revision is reverted to a previous revision in the revision history
View answer
Correct Answer: BC
Question #19
- (Topic 3) Which three settings are the factory default settings on FortiManager? (Choose three.)
A. The administrative domain is disabled
B. The Port1 interface IP address is 192
C. Management Extension applications are enabled
D. The FortiManager setup wizard is disabled
E. FortiAnalvzer features are disabled
View answer
Correct Answer: A
Question #20
- (Topic 2) An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package,Fortinet, in the custom ADOM1. Which statement about the global policy package assignment to the newly-created policy packageFortinetis true?
A. When a new policy package is created, it automatically assigns the global policies to the new package
B. When a new policy package is created, you need to assign the global policy package from the globalADOM
C. When a new policy package is created, you need to reapply the global policy package to the ADOM
D. When a new policy package is created, you can select the option to assign the global policies to the new package
View answer
Correct Answer: C
Question #21
- (Topic 3) Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?
A. FortiManager ignored the firewall service category General but created a new service category in its database
B. FortiManager ignored the firewall service category general and deleted the duplicate value In Its database
C. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database
D. FortiManager ignored the firewall service category General and did not update Its database with the value
View answer
Correct Answer: AD
Question #22
- (Topic 3) In the event that one of the secondary FortiManager devices fails, which action must be performed to return the FortiManager HA manual mode to a working state?
A. The FortiManaqer HA state transition is transparent to administrators and does notrequire any reconfiguration
B. Manually promote one of the working secondary devices to the primary role, and reboot the old primary device to remove the peer IP of the failed device
C. Reconfigure the primary device to remove the peer IP of the failed device
D. Reboot the failed device to remove its IP from the primary device
View answer
Correct Answer: BD
Question #23
- (Topic 1) Which two settings must be configured for SD-WAN Central Management? (Choose two.)
A. SD-WAN must be enabled on per-ADOM basis
B. You can create multiple SD-WAN interfaces per VDOM
C. When you configure an SD-WAN, you must specify at least two member interfaces
D. The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies
View answer
Correct Answer: BC
Question #24
- (Topic 3) An administrator has added all the devices in a Security Fabric group to FortiManager. How does the administrator identify the root FortiGate?
A. By a dollar symbol ($) at the end of the device name
B. By an at symbol (@) at the end of the device name
C. By a QUESTION NO: mark(?) at the end of the device name
D. By an Asterisk (*) at the end of the device name
View answer
Correct Answer: D

View Answers after Submission

Please submit your email and WhatsApp to get the answers of questions.

Note: Please make sure your email ID and Whatsapp are valid so that you can get the correct exam results.

Email:
Whatsapp/phone number:


Copyright © 2024. Designer by SPOTO Official Website. All Rights Reserved.