Fortinet NSE5_FMG-7.2 Exam Practice Questions (P. 1)
- Full Access (63 questions)
- Six months of Premium Access
- Access to one million comments
- Seamless ChatGPT Integration
- Ability to download PDF files
- Anki Flashcard files for revision
- No Captcha & No AdSense
- Advanced Exam Configuration
Question #1
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?
Which statement correctly describes the expected result?
- AThe shared device settings will be installed automatically.
- BAny unused objects from a previous ADOM are moved to the new ADOM automatically.
- CThe shared policy package will not be moved to the new ADOM.Most Voted
- DPolicy packages will be imported into the new ADOM automatically.
Correct Answer:
C
C

When you transition managed devices between ADOMs in FortiManager, remember that shared policy packages are not automatically moved. To maintain those settings in the new ADOM, you'll have to manually import the necessary policy packages. This step is crucial for ensuring that your settings and policies align correctly in the new organizational structure. This ensures that migration is both a strategic and an administrative decision, requiring a reconfiguration to maintain alignment with your network security policies.
send
light_mode
delete
Question #2
An administrator enabled workspace mode and now wants to delete an address object that is currently referenced in a firewall policy.
Which two results can the administrator expect to happen? (Choose two.)
Which two results can the administrator expect to happen? (Choose two.)
- AFortiManager will temporarily change the status of the referenced firewall policy.
- BFortiManager will disable the status of the address object.
- CFortiManager will replace the deleted address object with the none address object in the referenced firewall policy.Most Voted
- DFortiManager will not allow the administrator to delete a referenced address object until the ADOM is locked.Most Voted
Correct Answer:
CD
CD

When you delete an address object in FortiManager that's already used in a firewall policy, FortiManager automatically substitutes it with a 'none' object, essentially blocking any traffic matching that policy—a crucial safeguard against unintended traffic flow. Moreover, with workspace mode activated, remember that your ADOM turns read-only. You've got to lock it first to enable modifications, ensuring that accidental changes don't slip through during broader administrative activities. This layered approach helps maintain the integrity and security of your network configurations.
send
light_mode
delete
Question #3
An administrator runs the Policy Check feature on FortiManager ADOM.
What will be the result?
What will be the result?
- AIt will find and provide recommendations to combine multiple separate policy packages into one common policy package.
- BIt will find and merge duplicate policies in the policy package.
- CIt will find and provide recommendations for optimizing policies in a policy package.Most Voted
- DIt will find and delete disabled firewall policies in the policy package.
Correct Answer:
C
C

The Policy Check function in FortiManager's ADOM primarily facilitates policy optimization by providing pertinent suggestions. These may include identifying duplicate policies, addressing policy shadowing, recognizing overlaps, and spotting orphaned objects, thereby ensuring operational efficiency without altering existing configurations. Understanding and applying the feedback from Policy Check can significantly enhance your firewall management strategy, making it more streamlined and effective.
send
light_mode
delete
Question #4
An administrator created a header and footer global policy package and assigned it to an ADOM.
What are two outcomes from this action? (Choose two.)
What are two outcomes from this action? (Choose two.)
- AYou must manually move the header and footer policies after the policy assignment.
- BAfter you assign the global policy package to an ADOM, the policy package is hidden from the ADOM and cannot be viewed.
- CIf you assign an additional global policy package to the same ADOM, FortiManager removes previously assigned policies.Most Voted
- DYou can edit or delete all the global objects in the global ADOM.Most Voted
Correct Answer:
AD
AD

After assigning a header and footer global policy package to an ADOM, you can indeed manage (edit or delete) all global objects created within the global ADOM; they are distinguishable as they start with "g." Furthermore, once this policy package is assigned, you shouldn't need to manually adjust the positions of the header and footer policies as they are automatically integrated at the respective positions in the policy sequence during deployment. FortiManager is designed to handle these arrangements to ensure policy consistency and operational efficiency.
send
light_mode
delete
Question #5
An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn <devname> <serialnum>.
Which device name and serial number must the administrator use?
Which device name and serial number must the administrator use?
- AThe device name of the new device and serial number of the failed device
- BThe device name and serial number of the failed device
- CThe device name of the failed device and serial number of the new deviceMost Voted
- DThe device name and serial number of the new device
Correct Answer:
C
C

In the process of replacing a failed device through FortiManager, it's crucial to maintain the configuration continuity. This is achieved by using the device name of the failed device paired with the serial number of the new device. This particular approach enables all the configurations, policies, and prior setups linked to the old device's name to seamlessly migrate and apply to the new hardware, ensuring a smooth transition without the need for a complete reconfiguration.
send
light_mode
delete
All Pages