Fortinet FCP_FGT_AD-7.4 FCP – FortiGate 7.4 Administrator Online Training
Fortinet FCP_FGT_AD-7.4 Online Training
The questions for FCP_FGT_AD-7.4 were last updated at Mar 02,2025.
- Exam Code: FCP_FGT_AD-7.4
- Exam Name: FCP - FortiGate 7.4 Administrator
- Certification Provider: Fortinet
- Latest update: Mar 02,2025
Which three options are the remote log storage options you can configure on FortiGate? (Choose three.)
- A . FortiSIEM
- B . FortiCloud
- C . FortiCache
- D . FortiSandbox
- E . FortiAnalyzer
Which two settings can be separately configured per VDOM on a FortiGate device? (Choose two.)
- A . FortiGuard update servers
- B . System time
- C . Operating mode
- D . NGFW mode
Refer to the exhibit.
Review the Intrusion Prevention System (IPS) profile signature settings.
Which statement is correct in adding the FTP .Login.Failed signature to the IPS sensor profile?
- A . Traffic matching the signature will be silently dropped and logged.
- B . The signature setting uses a custom rating threshold.
- C . The signature setting includes a group of other signatures.
- D . Traffic matching the signature will be allowed and logged.
Which two statements are correct regarding FortiGate FSSO agentless polling mode? (Choose two.)
- A . FortiGate uses the AD server as the collector agent
- B . FortiGate uses the SMB protocol to read the event viewer logs from the DCs
- C . FortiGate points the collector agent to use a remote LDAP server
- D . FortiGate queries AD by using the LDAP to retrieve user group information
Which type of logs on FortiGate record information about traffic directly to and from the FortiGate management IP addresses?
- A . Local traffic logs
- B . Forward traffic logs
- C . System event logs
- D . Security logs
Which two inspection modes can you use to configure a firewall policy on a profile-based next-generation firewall (NGFW)? (Choose two.)
- A . Proxy-based inspection
- B . Certificate inspection
- C . Flow-based inspection
- D . Full Content inspection
An administrator wants to configure Dead Peer Detection (DPD) on IPSEC VPN for detecting dead tunnels. The requirement is that FortiGate sends DPD probes only when no traffic is observed in the tunnel.
Which DPD mode on FortiGate will meet the above requirement?
- A . Disabled
- B . On Demand
- C . Enabled
- D . On Idle
Refer to the exhibit.
The exhibit shows the IPS sensor configuration.
If traffic matches this IPS sensor, which two actions is the sensor expected to take? (Choose two.)
- A . The sensor will allow attackers matching the NTP.Spoofed.KoD.DoS signature.
- B . The sensor will block all attacks aimed at Windows servers.
- C . The sensor will reset all connections that match these signatures.
- D . The sensor will gather a packet log for all matched traffic.
Refer to the exhibit.
An administrator has configured a performance SLA on FortiGate, which failed to generate any traffic.
Why is FortiGate not sending probes to 4.2.2.2 and 4.2.2.1 servers? (Choose two.)
- A . The Detection Mode setting is not set to Passive.
- B . Administrator didn’t configure a gateway for the SD-WAN members, or configured gateway is not valid.
- C . The configured participants are not SD-WAN members.
- D . The Enable probe packets setting is not enabled.
Which engine handles application control traffic on the next-generation firewall (NGFW) FortiGate?
- A . Antivirus engine
- B . Intrusion prevention system engine
- C . Flow engine
- D . Detection engine
Latest FCP_FGT_AD-7.4 Dumps Valid Version with 200 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
