Fortinet NSE5_FMG-7.0 Fortinet NSE 5 – FortiManager 7.0 Online Training
Fortinet NSE5_FMG-7.0 Online Training
The questions for NSE5_FMG-7.0 were last updated at Jan 03,2025.
- Exam Code: NSE5_FMG-7.0
- Exam Name: Fortinet NSE 5 - FortiManager 7.0
- Certification Provider: Fortinet
- Latest update: Jan 03,2025
Question #21
An administrator would like to create an SD-WAN using central management in the Training ADOM.
To create an SD-WAN using central management, which two steps must be completed? (Choose two.)
- A . Specify a gateway address when you create a default SD-WAN static route
- B . Enable SD-WAN central management in the Training ADOM
- C . Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD-WAN template settings
- D . Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces
Correct Answer: B,D
B,D
Explanation:
Reference: https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/676493/removing-existing-configuration-references-to-interfaces
B,D
Explanation:
Reference: https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/676493/removing-existing-configuration-references-to-interfaces
Question #22
View the following exhibit, which shows the Download Import Report:
Why it is failing to import firewall policy ID 2?
- A . The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate
- B . Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
- C . Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
- D . Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
Correct Answer: A
A
Explanation:
FortiManager_6.4_Study_Guide-Online C page 331 & 332
A
Explanation:
FortiManager_6.4_Study_Guide-Online C page 331 & 332
Question #23
Which three settings are the factory default settings on FortiManager? (Choose three.)
- A . Username is admin
- B . Password is fortinet
- C . FortiAnalyzer features are disabled
- D . Reports and Event Monitor panes are enabled
- E . port1 interface IP address is 192.168.1.99/24
Correct Answer: A,C,E
Question #24
Refer to the following exhibit:
Which of the following statements are true based on this configuration? (Choose two.)
- A . The same administrator can lock more than one ADOM at the same time
- B . Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out
- C . Unlocking an ADOM will submit configuration changes automatically to the approval administrator
- D . Unlocking an ADOM will install configuration automatically on managed devices
Correct Answer: A,B
A,B
Explanation:
Reference: http://help.fortinet.com/fmgr/cli/5-6-2/Document/0800_AD0Ms/200_Configuring+.htm
A,B
Explanation:
Reference: http://help.fortinet.com/fmgr/cli/5-6-2/Document/0800_AD0Ms/200_Configuring+.htm
Question #25
View the following exhibit.
If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)
- A . FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
- B . FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on
FortiGate under central management. - C . During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
- D . If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.
Correct Answer: A,C
A,C
Explanation:
Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.
A,C
Explanation:
Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.
Question #26
Which configuration setting for FortiGate is part of a device-level database on FortiManager?
- A . VIP and IP Pools
- B . Firewall policies
- C . Security profiles
- D . Routing
Correct Answer: A
A
Explanation:
Device-level settings for FortiGate in FortiManager include configurations that pertain specifically to a device, such as interfaces, static routes, and Virtual IPs (VIPs) and IP Pools. These settings are specific to the device and do not directly tie into policy and object configurations which are stored at ADOM level (like firewall policies and security profiles).
A
Explanation:
Device-level settings for FortiGate in FortiManager include configurations that pertain specifically to a device, such as interfaces, static routes, and Virtual IPs (VIPs) and IP Pools. These settings are specific to the device and do not directly tie into policy and object configurations which are stored at ADOM level (like firewall policies and security profiles).
Question #27
Refer to the exhibit.
You are using the Quick Install option to install configuration changes on the managed FortiGate.
Which two statements correctly describe the result? (Choose two.)
- A . It will not create a new revision in the revision history
- B . It installs device-level changes to FortiGate without launching the Install Wizard
- C . It cannot be canceled once initiated and changes will be installed on the managed device
- D . It provides the option to preview configuration changes prior to installing them
Correct Answer: B,C
B,C
Explanation:
FortiManager_6.4_Study_Guide-Online C page 164
The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing. Administrator should be certain of the changes before using this install option, because the install can’t be cancelled after the process is initiated.
B,C
Explanation:
FortiManager_6.4_Study_Guide-Online C page 164
The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing. Administrator should be certain of the changes before using this install option, because the install can’t be cancelled after the process is initiated.
Latest NSE5_FMG-7.0 Dumps Valid Version with 65 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
Subscribe
Login
0 Comments
