NSE5_FMG-7.2 Fortinet NSE 5 - FortiManager 7.2 Questions and Answers

FortiManager will not allow the administrator to delete a referenced address object

FortiManager will disable the status of the referenced firewall policy

FortiManager will replace the deleted address object with the none address object in the referenced

firewall policy

FortiManager will replace the deleted address object with all address object in the referenced firewall policy

The setting allows automatic updates to the policy package configuration for a managed device

The setting enables the ADOMs feature on FortiManager

This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs.

The setting disables concurrent ADOM access and adds ADOM locking

The latest revision history for the managed FortiGate does match with the FortiGate running configuration

Configuration changes have been installed to FortiGate and represents FortiGate configuration has been changed

The latest history for the managed FortiGate does not match with the device-level database

Configuration changes directly made on the FortiGate have been automatically updated to device-level

database

When a new policy package is created, it automatically assigns the global policies to the new package.

When a new policy package is created, you need to assign the global policy package from the global

ADOM.

When a new policy package is created, you need to reapply the global policy package to the ADOM.

When a new policy package is created, you can select the option to assign the global policies to the new package.

Device-level database

Revision history database

ADOM-level database

Configuration-level database

It will install configuration changes to managed device automatically

It will tag the device settings status as Auto-Update

It will generate a new version ID and remove all other revision history versions

It will modify the device-level database

FortiGate devices in HA cluster devices are counted as a single device.

FortiGate in transparent mode configurations are not counted toward the device count on FortiManager.

FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.

The maximum number of managed devices for each ADOM is 500.

It allows two or more administrators to make configuration changes at the same time, in the same ADOM.

It disables concurrent read-write access to an ADOM.

It allows the same administrator to lock more than one ADOM at the same time.

It is used to validate administrator login attempts through external servers.

The policy package reports inconsistencies and conflicts during a Policy Consistency Check.

The policy package does not have a FortiGate as the installation target.

The policy package configuration has been changed on both FortiManager and the managed device

independently.

The policy configuration has never been imported after a device was registered on FortiManager.

It allows FortiGate to unset central management settings.

It allows FortiGate to reboot and recover the previous configuration from its configuration file.

It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.

It allows FortiGate to reboot and restore a previously working firmware image.

To create System Checkpoints for the FortiManager configuration.

To save the current state of the whole ADOM.

To save the current state of all policy packages and objects for an ADOM.

To revert individual policy packages and device-level settings for a managed FortiGate by reverting to a specific ADOM revision

It supports the FortiManager script feature

It allows making configuration changes for managed devices on FortiManager panes

FortiManager automatically installs the configuration difference in revisions on the managed FortiGate

You cannot assign the same ADOM to multiple administrators

FortiGuard database

Global database

Logs

All devices

FortiManager is unable to determine the policy package status

The policy package was never imported after a device was registered on FortiManager

The Policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager

The Policy package configuration has been changed on FortiManager and changes have not yet been installed on the managed device.

Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.

Changes to the AP's state must be performed directly on the managed FortiGate.

Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.

Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.

10.0.1.0/24

It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values

192.168.0.1/24

Local-FortiGate will automatically choose an IP Network based on its network interface settings.

Policy ID 2 will not be installed.

Policy ID 2 is installed in the disabled state.

Policy ID 2 is installed without a source address.

Policy ID 2 is installed without the remote user student.

When FortiManager is auto-updated with configuration changes made directly on a managed device

When changes to the device-level database are made on FortiManager

When FortiManager installs device-level changes on a managed device

When a configuration revision is reverted to a previous revision in the revision history

It allows FortiManager to respond to requests for FortiGuard services from FortiGate devices.

It allows FortiManager to determine the connection status of managed devices.

It allows administrative access to FortiManager.

It allows third-party applications to gain read/write access to FortiManager.

Admin A can access VDOM2 and VDOM3 with the super user profile.

The FortiManager policies and objects database can be shared between the Financial and HR ADOMs.

The administrator must set the FortiManager ADOM mode to Advanced.

The administrator must configure FortiManager in workspace mode.

The policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager.

FortiManager is unable to determine the policy package status.

The policy configuration has been changed on FortiManager and changes have not yet been installed on the managed device.

The policy package was never imported after a device was registered on FortiManager

Backs up all devices and the FortiGuard database.

Does not back up firmware images saved on FortiManager

Supports FTP, SCP, and SFTP

Can be configured from the CLI and GUI

During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate

During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate

During discovery FortiManager sets the NATed device IP address on FortiGate

During discovery FortiManager uses only the FortiGate serial number to establish the connection

FortiGate is discovered by FortiManager through the FortiGate NATed IP address.

FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on

FortiGate under central management.

During discovery, the FortiManager NATed IP address is not set by default on FortiGate.

If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.

After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down.

FortiManager will revert and install a previous configuration revision on the managed FortiGate.

FortiGate will reject the CLI commands that will cause the tunnel to go down.

FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down.

From the list of configured override servers with ability to fall back to public FDN servers

From the configured override server list only

From the default server fdsl.fortinet.com

From public FDNI server with highest index number only

You must install these changes using Install Wizard

FortiGate will auto-update the FortiManager’s device-level database.

FortiManager will create a new revision history.

FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.