Fortinet NSE5_FMG-7.2 Exam Prep Guide Prep guide for the NSE5_FMG-7.2 Exam [Q25-Q43]

Fortinet NSE5_FMG-7.2 Exam Prep Guide: Prep guide for the NSE5_FMG-7.2 Exam

2024 New Preparation Guide of Fortinet NSE5_FMG-7.2 Exam

Fortinet NSE5_FMG-7.2 exam covers a wide range of topics, including installation and configuration of FortiManager, device management, policy management, and troubleshooting. NSE5_FMG-7.2 exam is designed to test the candidate's ability to manage and configure FortiManager in a variety of scenarios. Candidates must demonstrate their ability to configure and manage policies, profiles, and templates, as well as troubleshoot common issues with FortiManager.

Fortinet NSE5_FMG-7.2 certification exam is an important certification for network security professionals who want to demonstrate their expertise in managing multiple Fortinet devices through a centralized management platform. Fortinet NSE 5 - FortiManager 7.2 certification exam covers a wide range of topics, and passing the exam is a great way to enhance one's career prospects and earning potential.

To prepare for the Fortinet NSE5_FMG-7.2 Certification Exam, candidates can take advantage of a range of study materials, including Fortinet's official study guide, online training courses, and practice exams. These resources are designed to help candidates develop the skills and knowledge necessary to pass the exam on the first attempt.

 

NEW QUESTION # 25
Which of the following statements are true regarding VPN Gateway configuration in VPN Manager? (Choose two.)

• A. Protected subnets are the subnets behind the device that you don't want to allow access to over the IPsec VPN
• B. External gateways are third-party VPN gateway devices only
• C. Managed devices in other ADOMs must be treated as external gateways
• D. Managed gateways are devices managed by FortiManager in the same ADOM

Answer: C,D

NEW QUESTION # 26
In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

• A. Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device
• B. Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.
• C. FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.
• D. Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

Answer: D

Explanation:
FortiManager_6.4_Study_Guide-Online - page 346
FortiManager HA doesn't support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state:
1. Manually reconfigure one of the secondary devices to become the primary device
2. Reconfigure all other secondary devices to point to the new primary device

NEW QUESTION # 27
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?

• A. Trainer must close Student's workflow session before approving the request
• B. Trainer does not have full rights over this ADOM
• C. Student, who submitted the workflow session, must first self-approve the request
• D. Trainer is not a part of workflow approval group

Answer: D

NEW QUESTION # 28
Which two items are included in the FortiManager backup? (Choose two.)

• A. Global database
• B. Logs
• C. FortiGuard database
• D. All devices

Answer: A,D

NEW QUESTION # 29
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators.
How should the Workspace mode be configured on FortiManager?

• A. Set to normal and use the policy locking feature
• B. Set to workflow and use the ADOM locking feature
• C. Set to disable and use the policy locking feature
• D. Set to read/write and use the policy locking feature

Answer: B

NEW QUESTION # 30
An administrator has added all the devices in a Security Fabric group to FortiManager.
How does the administrator identify the root FortiGate?

• A. By an Asterisk (*) at the end of the device name
• B. By a dollar symbol ($) at the end of the device name
• C. Question mark(?) at the end of the device name
• D. By an at symbol (@) at the end of the device name

Answer: A

NEW QUESTION # 31
An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

• A. When a new policy package is created, the administrator must assign the global policy package from the global ADOM.
• B. When a new policy package is created, the administrator needs to reapply the global policy package to ADOM1.
• C. When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package.
• D. When creating a new policy package, the administrator can select the option to assign the global policy package to the new policy package

Answer: D

Explanation:
Reference:https://help.fortinet.com/fmgr/50hlp/56/5-6-2/FortiManager_Admin_Guide/1200_Policy%20and%20O

NEW QUESTION # 32
Refer to the exhibit.

How will FortiManager try to get updates for antivirus and IPS?

• A. From public FDNI server IP address with the fourth highest octet only
• B. From the configured override server IP address 10.0.1.50 only
• C. From the list of configured override servers or public FDN servers
• D. From the default server fds1.fortinet.com

Answer: C

NEW QUESTION # 33
Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

• A. When changes to device-level database is made on FortiManager
• B. When FortiManager installs device-level changes to a managed device
• C. When configuration revision is reverted to previous revision in the revision history
• D. When FortiManager is auto-updated with configuration changes made directly on a managed device

Answer: B,D

NEW QUESTION # 34
Which three settings are the factory default settings on FortiManager? (Choose three.)

• A. Password is fortinet
• B. Username is admin
• C. FortiAnalyzer features are disabled
• D. port1 interface IP address is 192.168.1.99/24
• E. Reports and Event Monitor panes are enabled

Answer: B,C,D

NEW QUESTION # 35
What does the diagnose dvm check-integrity command do? (Choose two.)

• A. Verifies and corrects duplicate VDOM entries
• B. Verifies and corrects database schemas in all object tables
• C. Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM syntax
• D. Verifies and corrects unregistered, registered, and deleted device states

Answer: A,D

Explanation:
6.2 Study Guide page 305
verify and correct parts of the device manager databases, including:
- inconsistent device-to-group and group-to-ADOM memberships
- unregistered, registered, and deleted device states
- device lock statuses
- duplicate VDOM entries

NEW QUESTION # 36
What will happen if FortiAnalyzer features are enabled on FortiManager?

• A. FortiManager will reboot
• B. FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices
• C. FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager
• D. FortiManager can be used only as a logging device.

Answer: A

Explanation:
Reference:https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FortiManager_Admin_Guide/1800_FAZ%20Features/0

NEW QUESTION # 37
An administrator is replacing a failed device on FortiManager by running the following command:
execute device replace sn <devname> <serialnum>.
Which device name and serial number must the administrator use?

• A. The device name of the failed device and serial number of the new device
• B. The device name and serial number of the new device
• C. The device name of the new device and serial number of the failed device
• D. The device name and serial number of the failed device

Answer: A

NEW QUESTION # 38
Which two statements about the scheduled backup of FortiManager are true? (Choose two.)

• A. It backs up all devices and the FortiGuard database.
• B. It does not back up firmware images saved on FortiManager.
• C. It supports FTP, SCP, and SFTP.
• D. It can be configured using the CLI and GUI.

Answer: B,C

NEW QUESTION # 39
An administrator would like to authorize a newly-installed AP using AP Manager. What steps does the administrator need to perform to authorize an AP?

• A. Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.
• B. Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.
• C. Changes to the AP's state must be performed directly on the managed FortiGate.
• D. Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.

Answer: A

NEW QUESTION # 40
An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package Fortinet in the custom ADOM1. What will happen to the Fortinet policy package when it is created?

• A. it automatically assigns the global policies
• B. You need to assign the global policy package from the global ADOM
• C. You can select the option to assign the global polices
• D. You need to reapply the global poky package to the ADOM

Answer: A

NEW QUESTION # 41
Which of the following statements are true regarding reverting to previous revision version from the revision history? (Choose two.)

• A. Reverting to a previous revision history will generate a new version ID and remove all other history
• B. To push these changes to a managed device, it required an install operation to the managed FortiGate.
• C. It will modify device-level database
• D. Reverting to a previous revision history will tag the device settings status as Auto-Update.

Answer: B,C

NEW QUESTION # 42
Refer to the exhibit.

An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.
What is the purpose of this command?

• A. It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.
• B. It allows FortiGate to unset central management settings.
• C. It allows FortiGate to reboot and recover the previous configuration from its configuration file.
• D. It allows FortiGate to reboot and restore a previously working firmware image.

Answer: C

NEW QUESTION # 43
......

Latest Questions NSE5_FMG-7.2 Guide to Prepare Free Practice Tests: https://www.dumpsking.com/NSE5_FMG-7.2-testking-dumps.html

NSE5_FMG-7.2 Practice Exam - 100 Unique Questions: https://drive.google.com/open?id=1FiOrgELaHx6i8dgZvtUl7YoZum-qqGPw