NSE5_FAZ-7.2

Refer to the exhibit. What is the purpose of using the Chart Builder feature on FortiAnalyzer?A . In Log View, this feature allows you to build a dataset and chart automatically, based on the filtered search results. B. In Log View, this feature allows you to build a chart and...

What can you do on FortiAnalyzer to restrict administrative access from specific locations?A . Configure trusted hosts for that administrator. B. Enable geo-location services on accessible interface. C. Configure two-factor authentication with a remote RADIUS server. D. Configure an ADOM for respective location.View AnswerAnswer: A Explanation: Reference: https://docs.fortinet.com/document/fortigate/6.2.0/hardening-your-fortigate/582009/system-administrator-best-practices

If you upgrade the FortiAnalyzer firmware, which report element can be affected?A . Custom datasets B. Report scheduling C. Report settings D. Output profilesView AnswerAnswer: A Explanation: https://docs.fortinet.com/document/fortianalyzer/6.2.5/upgrade-guide/669300/checking-reports

Logs are being deleted from one of the ADOMs earlier than the configured setting for archiving in the datapolicy. What is the most likely problem?A . CPU resources are too high B. Logs in that ADOM are being forwarded, in real-time, to another FortiAnalyzer device C. The total disk space...

In order for FortiAnalyzer to collect logs from a FortiGate device, what configuration is required? (Choose two.)A . Remote logging must be enabled on FortiGate B. Log encryption must be enabled C. ADOMs must be enabled D. FortiGate must be registered with FortiAnalyzerView AnswerAnswer: A,D Explanation: Pg 70: “after you...

An administrator has configured the following settings: config system fortiview settings set resolve-ip enable end What is the significance of executing this command?A . Use this command only if the source IP addresses are not resolved on FortiGate. B. It resolves the source and destination IP addresses to a hostname...

What are two of the key features of FortiAnalyzer? (Choose two.)A . Centralized log repository B. Cloud-based management C. Reports D. Virtual domains (VDOMs)View AnswerAnswer: A,C

Which two statements are true regarding fabric connectors? (Choose two.)A . Configuring fabric connectors to send notification to ITSM platform upon incidentcreation Is more efficient than third-party information from the FortiAnalyzer API. B. Fabric connectors allow to save storage costs and improve redundancy. C. Storage connector service does not require...

Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)A . Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated. B. Must establish an IPsec tunnel ID and pre-shared key. C. IPsec cannot be enabled if SSL is enabled as well....

Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?A . Antivirus logs B. Web filter logs C. IPS logs D. Application control logsView AnswerAnswer: B Explanation: Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/3600_FortiView/0200_Using_FortiView/1200_Compromised_hosts_page.htm?TocPath=FortiView%7CUsing%20FortiView%7C_____6