Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Fortinet NSE4_FGT-7.0

Fortinet NSE4_FGT-7.0 Exam Practice Questions (P. 1)

  • Full Access (106 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #1
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)
  1. A
    FortiGate uses the AD server as the collector agent.
  2. B
    FortiGate uses the SMB protocol to read the event viewer logs from the DCs.
  3. C
    FortiGate does not support workstation check.
  4. D
    FortiGate directs the collector agent to use a remote LDAP server.

Correct Answer:
AB
Reference:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD47732

Question #2
FortiGuard categories can be overridden and defined in different categories. To create a web rating override for example.com home page, the override must be configured using a specific syntax.
Which two syntaxes are correct to configure web rating override for the home page? (Choose two.)
  1. A
    www.exaple.com
  2. B
    www.example.com/index.html
  3. C
    example.com
  4. D
    www.example.com:443

Correct Answer:
AC
When using FortiGuard category filtering to allow or block access to a website, one option is to make a web rating override and define the website in a different category. Web ratings are only for host namesג€" "no URLs or wildcard characters are allowed".

Question #3
Refer to the exhibits to view the firewall policy (Exhibit A) and the antivirus profile (Exhibit B).
Exhibit A.

Exhibit B.

Which statement is correct if a user is unable to receive a block replacement message when downloading an infected file for the first time?
  1. A
    The flow-based inspection is used, which resets the last packet to the user.
  2. B
    The volume of traffic being inspected is too high for this model of FortiGate.
  3. C
    The firewall policy performs the full content inspection on the file.
  4. D
    The intrusion prevention security profile needs to be enabled when using flow-based inspection mode.

Correct Answer:
A

Question #4
Which three options are the remote log storage options you can configure on FortiGate? (Choose three.)
  1. A
    FortiSandbox
  2. B
    FortiCloud
  3. C
    FortiSIEM
  4. D
    FortiCache
  5. E
    FortiAnalyzer

Correct Answer:
BCE
Reference:
https://docs.fortinet.com/document/fortigate/6.0.0/handbook/265052/logging-and-reporting-overview

Question #5
Which statement correctly describes NetAPI polling mode for the FSSO collector agent?
  1. A
    NetAPI polling can increase bandwidth usage in large networks.
  2. B
    The NetSessionEnum function is used to track user logouts.
  3. C
    The collector agent must search security event logs.
  4. D
    The collector agent uses a Windows API to query DCs for user logins.

Correct Answer:
A
Reference:
https://kb.fortinet.com/kb/microsites/search.do?
cmd=displayKC&docType=kc&externalId=FD34906&sliceId=1&docTypeID=DT_KCARTICLE_1_1&dialogID=210966035&stateId=1%200%20210968009%27
)

Next Questions

All Pages