Summer Limited Time 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: wrap60

DumpsWrap Logo

Fortinet FCP_FMG_AD-7.6 Dumps

Page: 1 / 3
Total 33 questions
Get FCP_FMG_AD-7.6 Full Access Download FCP_FMG_AD-7.6 PDF

FortiManager 7.6 Administrator Questions and Answers

Question 1

You want to let multiple administrators work in the same ADOM without creating configuration conflicts.

What is the best and the most effective solution to apply?

Options:

A.

Configure RADIUS authentication to assign ADOM roles to each user.

B.

Enable workflow mode, which is the only way to prevent concurrent configuration conflicts.

C.

Assign administrators with JSON API access to the FortiManager.

D.

Activate workspace mode in the ADOM settings.

Question 2

Refer to the exhibit.

as

An administrator assigned a new policy package to FortiGate HQ-NGFW-1. In the installation preview, they noticed some settings they did not modify and are unsure about the changes.

Based on the exhibit, which two things will happen if they continue with the installation? (Choose two.)

Options:

A.

FortiGate HQ-NGFW-1 can use FortiManager firmware templates to upgrade firmware and ratings.

B.

FortiGate HQ-NGFW-1 can contact the FortiManager acting as FortiGuard Distribution Server (FDS) to download FortiGuard updates.

C.

FortiGate HQ-NGFW-1 will use the root_CA3 certificate in firewall address objects or policies.

D.

FortiManager will install the CA certificate named root_CA3 to authenticate FortiGate-to-FortiManager communication protocol (FGFM) tunnel connections with FortiGate HQ- NGFW-1.

Question 3

Refer to the exhibits.

as

as

An administrator has been asked to install the same policies from a central policy package onto the BR1-FGT-1 firewall.

The administrator added BR1-FGT-1 as a target in the central policy package installation.

What should the administrator do when reinstalling the central policy package on the BR1-FGT-1 firewall?

Options:

A.

Assign only one policy package to the firewall because FortiManager does not allow more than one policy package assigned per device at the same time.

B.

Import the policy package to change the unknown status and synchronize the policy package.

C.

Use the install wizard to install the central policy package on the BR1-FGT-1 firewall.

D.

First resolve the modified status in the configuration and provisioning templates to allow a smooth installation.

Question 4

Refer to the exhibits.

as

as

as

FortiGate HQ-NGFW-1 downloads and validates FortiGuard databases from FortiManager which acts as a local FortiGuard Distribution Server (FDS) in a closed network. An administrator pushes a new firewall policy with an intrusion prevention system (IPS) profile from FortiManager to FortiGate HQ- NGFW-1 However, FortiGate does not recognize the new IPS signature from FortiManager.

What is the most likely reason why FortiGate HQ-NGFW-1 does not recognize the new IPS signature?

Options:

A.

FortiGate must enable rating for the FortiManager IP address, 192.168.1.120, in server list 1.

B.

FortiManager and FortiGate have different IPS database versions.

C.

The administrator must enable IPv6 connections for FortiGuard services on FortiManager.

D.

The administrator must enable the fortiguard-anycast option to correctly download all signatures from the local FDS.

Question 5

Refer to the exhibit.

as

An administrator created two new meta fields in FortiManager.

Which operation can you perform with these parameters?

Options:

A.

You can add them to objects as custom attributes.

B.

You can export them to be used in other ADOMs.

C.

You can use them as variables in scripts.

D.

You can invoke them using the $ character.

Question 6

Refer to the exhibit.

as

FortiManager is operating behind a network address translation (NAT) device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings.

What is the expected result during discovery?

Options:

A.

FortiManager sets both the 100.65.0.120 IP address and 10.0.13.120 IP address on FortiGate.

B.

FortiManager sets both the 100.65.0.120 IP address and 100.65.0.101 IP address on FortiGate.

C.

FortiManager sets the 100.65.0.101 IP address on FortiGate.

D.

FortiManager sets the 100.65.0.120 IP address on FortiGate.

Question 7

While attempting to push a NetFlow configuration script through the FortiManager policy package: an administrator encounters an error stating that an object is unrecognized in line 4.

as

What must the administrator do to successfully apply the NetFlow configuration script and avoid the object unrecognized error?

Options:

A.

Make sure the user running the script has full access to the VDOM—AGEUSR.

B.

Run the script on the device database.

C.

Use metadata variables if they use VDOMs in the script.

D.

Create a normalized interface on the policy layer before running the script.

Question 8

An administrator wants to configure and manage multiple objects in the FortiManager database and give access to other users who work in the same database.

To stay in control of the changes made to firewall policies by other team members, the administrator needs a setup where all modifications go through a central check before they can be installed.

How can the administrator create this setup?

Options:

A.

Enable the prompt asking the administrator to accept firewall policies changes before saving.

B.

Enable the workspace (for all ADOMs) to control all changes made by any administrator.

C.

Enable device lock and the advanced mode feature in the ADOM.

D.

Enable workflow mode and the ADOM lock feature.

Question 9

Refer to the exhibit.

as

What can you conclude from the downloaded import report?

Options:

A.

FortiManager does not support per-device mapping for firewall addresses.

B.

The administrator will see a new policy package named Remote-FortiGate_root in the FortiManager ADOM database.

C.

FortiManager will change the configuration of REMOTE_SUBNET to match the interface mapping coming in from Remote-FortiGate.

D.

As a result of this policy import process, FortiManager will create a new firewall address called REMOTE_SUBNET in the ADOM database.

Load More FCP_FMG_AD-7.6 Questions
Page: 1 / 3
Total 33 questions
Get FCP_FMG_AD-7.6 Full Access Download FCP_FMG_AD-7.6 PDF