Fortinet FCP_FGT_AD-7.4 FCP – FortiGate 7.4 Administrator Online Training
Fortinet FCP_FGT_AD-7.4 Online Training
The questions for FCP_FGT_AD-7.4 were last updated at Mar 01,2025.
- Exam Code: FCP_FGT_AD-7.4
- Exam Name: FCP - FortiGate 7.4 Administrator
- Certification Provider: Fortinet
- Latest update: Mar 01,2025
Refer to the exhibit.
Which route will be selected when trying to reach 10.20.30.254?
- A . 10.20.30.0/24 [10/0] via 172.20.167.254, port3, [1/0]
- B . 10.30.20.0/24 [10/0] via 172.20.121.2, port1, [1/0]
- C . 10.20.30.0/26 [10/0] via 172.20.168.254, port2, [1/0]
- D . 0.0.0.0/0 [10/0] via 172.20.121.2, port1, [1/0]
Which two IP pool types are useful for carrier-grade NAT deployments? (Choose two.)
- A . Port block allocation
- B . Fixed port range
- C . One-to-one
- D . Overload
What is eXtended Authentication (XAuth)?
- A . It is an IPsec extension that forces remote VPN users to authenticate using their local ID.
- B . It is an IPsec extension that forces remote VPN users to authenticate using their credentials (username and password).
- C . It is an IPsec extension that authenticates remote VPN peers using a pre-shared key.
- D . It is an IPsec extension that authenticates remote VPN peers using digital certificates.
What must you configure to enable proxy-based TCP session failover?
- A . You must configure ha-configuration-sync under configure system ha.
- B . You do not need to configure anything because all TCP sessions are automatically failed over.
- C . You must configure session-pickup-enable under configure system ha.
- D . You must configure session-pickup-connectionless enable under configure system ha.
An administrator needs to inspect all web traffic (including Internet web traffic) coming from users connecting to the SSL-VPN.
How can this be achieved?
- A . Assigning public IP addresses to SSL-VPN users
- B . Configuring web bookmarks
- C . Disabling split tunneling
- D . Using web-only mode
Which NAT method translates the source IP address in a packet to another IP address?
- A . DNAT
- B . SNAT
- C . VIP
- D . IPPOOL
What is the common feature shared between IPv4 and SD-WAN ECMP algorithms?
- A . Both can be enabled at the same time.
- B . Both support volume algorithms.
- C . Both control ECMP algorithms.
- D . Both use the same physical interface load balancing settings.
Refer to the exhibit.
Which statement about the configuration settings is true?
- A . When a remote user accesses http://10.200.1.1:443, the SSL-VPN login page opens.
- B . When a remote user accesses https://10.200.1.1:443, the SSL-VPN login page opens.
- C . When a remote user accesses https://10.200.1.1:443, the FortiGate login page opens.
- D . The settings are invalid. The administrator settings and the SSL-VPN settings cannot use the same port.
What is the limitation of using a URL list and application control on the same firewall policy, in NGFW policy-based mode?
- A . It limits the scanning of application traffic to the browser-based technology category only.
- B . It limits the scanning of application traffic to the DNS protocol only.
- C . It limits the scanning of application traffic to use parent signatures only.
- D . It limits the scanning of application traffic to the application category only.
Refer to the exhibits.
The exhibits show the firewall policies and the objects used in the firewall policies.
The administrator is using the Policy Lookup feature and has entered the search criteria shown in the exhibit.
Which policy will be highlighted, based on the input criteria?
- A . Policy with ID 4.
- B . Policy with ID 5.
- C . Policies with ID 2 and 3.
- D . Policy with ID 1.
Latest FCP_FGT_AD-7.4 Dumps Valid Version with 200 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
