Fortinet NSE 5 - FortiAnalyzer 7.0 - NSE5_FAZ-7.0 FREE EXAM DUMPS QUESTIONS & ANSWERS]

Question 1

What are the operating modes of FortiAnalyzer? (Choose two)

A. Standalone B. Manager C. Collector D. Analyzer

Discussion 0

Correct Answer: C,D Vote an answer

Question 2

View the exhibit:

What does the 1000MB maximum for disk utilization refer to?

A. The disk quota for all devices in the ADOM B. The disk quota for the FortiAnalyzer model C. The disk quota for each device in the ADOM D. The disk quota for the ADOM type

Discussion 0

Correct Answer: A Vote an answer

Explanation: Only visible for FreeCram members. You can sign-up / login (it's free).

Question 3

Refer to the exhibits.

How many events will be added to the incident created after running this playbook?

A. Five events will be added. B. Thirteen events will be added. C. No events will be added. D. Ten events will be added.

Discussion 0

Correct Answer: D Vote an answer

Question 4

View the exhibit.

What does the data point at 14:35 tell you?

A. The sqlplugind daemon is ahead in indexing by one log. B. FortiAnalyzer has temporarily stopped receiving logs so older logs' can be indexed. C. FortiAnalyzer is dropping logs. D. FortiAnalyzer is indexing logs faster than logs are being received.

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for FreeCram members. You can sign-up / login (it's free).

Question 5

In FortiAnalyzer's FormView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IPs, without introducing any additional performance impact to FortiAnalyzer?

A. Configure # set resolve-ip enable in the system FortiView settings B. Resolve IPs on a per-ADOM basis to reduce delay on FortiView while IPs resolve C. Resolve IPs on FortiGate D. Configure local DNS servers on FortiAnalyzer

Discussion 0

Correct Answer: C Vote an answer

Question 6

A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer.
What can you do on FortiAnalyzer to accomplish this?

A. Click FortiView and generate a report for that administrator. B. Click Task Monitor and view the tasks performed by that administrator. C. View the tasks performed by the rogue administrator in Fabric View. D. Click Log View and generate a report for that administrator.

Discussion 0

Correct Answer: B Vote an answer

Explanation: Only visible for FreeCram members. You can sign-up / login (it's free).

Question 7

You are using RAID with a FortiAnalyzer that supports software RAID, and one of the hard disks on FortiAnalyzer has failed.
What is the recommended method to replace the disk?

A. Clear all RAID alarms and replace the disk while FortiAnalyzer is still running B. Downgrade your RAID level, replace the disk, and then upgrade your RAID level C. Perform a hot swap D. Shut down FortiAnalyzer and then replace the disk

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for FreeCram members. You can sign-up / login (it's free).

Question 8

What is the main purpose of using an NTP server on FortiAnalyzer and all of its registered devices?

A. Log correlation B. Real-time forwarding C. Log collection D. Host name resolution

Discussion 0

Correct Answer: A Vote an answer