Fortinet NSE5_FMG-7.2 Real Exam Questions
The questions for NSE5_FMG-7.2 were last updated at Nov 30,2024.
- Exam Code: NSE5_FMG-7.2
- Exam Name: Fortinet NSE 5 - FortiManager 7.2
- Certification Provider: Fortinet
- Latest update: Nov 30,2024
Refer to the exhibit.
An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.
Which two reasons can explain why the FortiAnalyzer feature panes do not appear? (Choose two.)
- A . The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
- B . The administrator profile does not have full access privileges like the Super_User profile.
- C . The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
- D . FortiAnalyzer features are not enabled on FortiManager.
An administrator run the reload failure command: diagnose test deploymanager reload config
<deviceid> on FortiManager.
What does this command do?
- A . It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
- B . It installs the latest configuration on the specified FortiGate and update the revision history database.
- C . It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
- D . It installs the provisioning template configuration on the specified FortiGate.
Refer to the exhibit.
Which two statements are true if the script is executed using the Device Database option? (Choose two.)
- A . You must install these changes using the Install Wizard to a managed device
- B . The successful execution of a script on the Device Database will create a new revision history
- C . The script history will show successful installation of the script on the remote FortiGate
- D . The Device Settings Status will be tagged as Modified
Which two settings must be configured for SD-WAN Central Management? (Choose two.)
- A . SD-WAN must be enabled on per-ADOM basis
- B . You can create multiple SD-WAN interfaces per VDOM
- C . When you configure an SD-WAN, you must specify at least two member interfaces.
- D . The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
Refer to the exhibit.
Given the configuration shown in the exhibit, which two statements are true? (Choose two.)
- A . It allows two or more administrators to make configuration changes at the same time, in the same ADOM.
- B . It disables concurrent read-write access to an ADOM.
- C . It allows the same administrator to lock more than one ADOM at the same time.
- D . It is used to validate administrator login attempts through external servers.
Which two items does an FGFM keepalive message include? (Choose two.)
- A . FortiGate uptime
- B . FortiGate license information
- C . FortiGate IPS version
- D . FortiGate configuration checksum
View the following exhibit:
Which two statements are true if the script is executed using the Remote FortiGate Directly (via CLI) option? (Choose two.)
- A . You must install these changes using Install Wizard
- B . FortiGate will auto-update the FortiManager’s device-level database.
- C . FortiManager will create a new revision history.
- D . FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.
How should the Workspace mode be configured on FortiManager?
- A . Set to workflow and use the ADOM locking feature
- B . Set to read/write and use the policy locking feature
- C . Set to normal and use the policy locking feature
- D . Set to disable and use the policy locking feature
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.
How should the Workspace mode be configured on FortiManager?
- A . Set to workflow and use the ADOM locking feature
- B . Set to read/write and use the policy locking feature
- C . Set to normal and use the policy locking feature
- D . Set to disable and use the policy locking feature
Refer to the exhibit.
Which two statements about the output are true? (Choose two.)
- A . The latest revision history for the managed FortiGate does match with the FortiGate running configuration
- B . Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed
- C . The latest history for the managed FortiGate does not match with the device-level database
- D . Configuration changes directly made on the FortiGate have been automatically updated to device-Level database