Summer Sale - Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dpm65

Hot Vendors
  1. Home
  2. Fortinet
  3. Public Cloud Security
  4. FCP_WCS_AD-7.4
  5. FCP - AWS Cloud Security 7.4 Administrator Exam Questions and Answers

FCP_WCS_AD-7.4 FCP - AWS Cloud Security 7.4 Administrator Exam Questions and Answers

Questions 4

What is a drawback of deploying a FortiWeb VM inside a virtual public cloud (VPC) compared to FortiWeb Cloud?

Options:

A.

It is unable to support web applications from OWASP Top 10 threats.

B.

It does not support zero-day protection.

C.

It is slower than FortiWeb Cloud to apply advanced WAF protection.

D.

Only applications going through the VPC are protected.

Buy Now
Questions 5

Your organization is deciding between deploying an active-active (A-A) or active-passive (A-P) FortiGate high availability (HA) cluster in AWS cloud.

Which two statements are true about A-A clusters compared to A-P clusters? (Choose two.)

Options:

A.

For A-A clusters, FortiGate must perform SNAT inbound to ensure symmetric traffic flow.

B.

A-A clusters rely on API calls forsfailovers.

C.

A-A clusters always require a load balancer.

D.

A-A clusters can use a software-defined network (SDN) to perform a failover.

Buy Now
Questions 6

You need to deploy a new Windows server in AWS to offload web traffic from an existing web server in a different availability zone.

According to the AWS shared responsibility model, what three actions must you take to secure the new EC2 instance? (Choose three.)

Options:

A.

Update software on the instance.

B.

Change the existing elastic load balancer (ELB) to a gateway load balancer

C.

Configure security groups.

D.

Manage the operating system on the instance.

E.

Move all web servers into the same availability zone.

Buy Now
Questions 7

You are troubleshooting network connectivity issues between two VMs deployed in AWS.

One VM is a FortiGate located on subnet "LAN" that is part of the VPC "Encryption". The other VM is a Windows server located on the subnet "servers" which is also in the "Encryption" VPC. You are unable to ping the Windows server from FortiGate.

What are two reasons for this? (Choose two.)

Options:

A.

The firewall in the Windows VM is blocking the traffic.

B.

The default AWS Network Access Control List (NACL) does not allow this traffic.

C.

By default, AWS does not allow ICMP traffic between subnets.

D.

Add an inbound allow ICMP rule in the security group attached to the windows server.

Buy Now
Questions 8

Refer to the exhibit.

FCP_WCS_AD-7.4 Question 8

A customer is using the AWS Elastic Load Balancer (ELB).

Which two statements are correct about the ELB configuration? (Choose two.)

Options:

A.

The load balancer is configured to load balance traffic among multiple availability zones.

B.

The Amazon Resource Name is used to access the load balancer node and targets.

C.

You can use the DNS name to reach the targets behind the ELB.

D.

The load balancer is configured for the internal traffic of the virtual public cloud (VPC).

Buy Now
Questions 9

A customer has deployed FortiGate Cloud-Native Firewall (CNF).

Which two statements are correct about policy sets? (Choose two.)

Options:

A.

There is an implicit deny rule at the bottom of the policy set.

B.

The policy set must be manually synchronized to the CNF instance each time it is modified.

C.

A new policy set is created with each deployed CNF instance.

D.

Multiple policy sets can be applied to a single CNF instance.

Buy Now
Questions 10

Your organization is deciding between deploying FortiWeb VM or Fortinet Managed Rules for AWS WAF.

What are two benefits of choosing FortiWeb VM? (Choose two.)

Options:

A.

Only pay for what is used.

B.

Up-to-date WAF signatures powered by FortiGuard.

C.

Zero-day protection.

D.

Advanced WAF functionality.

Buy Now
Exam Code: FCP_WCS_AD-7.4
Exam Name: FCP - AWS Cloud Security 7.4 Administrator Exam
Last Update: Sep 11, 2024
Questions: 35

PDF + Testing Engine

$56  $159.99
buy now FCP_WCS_AD-7.4 pdf + testing engine

Testing Engine

$42  $119.99
buy now FCP_WCS_AD-7.4 testing engine

PDF (Q&A)

$35  $99.99
buy now FCP_WCS_AD-7.4 pdf
dumpsmate guaranteed to pass
24/7 Customer Support

DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.

Site Secure

mcafee secure

TESTED 16 Sep 2024