- All Exams Instant Download
For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:
For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:A . Use DNSB . Use host name resolutionC . Use real-time forwardingD . Use an NTP serverView AnswerAnswer: D
What is the most likely problem?
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?A . The total disk space is insufficient and you need to add other disk.B . CPU resources are too high.C . The ADOM disk...
How can you resolve the source and destination IP addresses, without introducing any additional performance impact to FortiAnalyzer?
In the FortiAnalyzer FortiView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IP addresses, without introducing any additional performance impact to FortiAnalyzer?A . Resolve IP addresses on a per-ADOM basis to reduce delay on FortiView while...
Which two of the following must you configure on FortiAnalyzer to email a FortiAnalyzer report externally? (Choose two.)
Which two of the following must you configure on FortiAnalyzer to email a FortiAnalyzer report externally? (Choose two.)A . Mail serverB . Output profileC . SFTP serverD . Report schedulingView AnswerAnswer: AB Explanation: Reference: https://docs.fortinet.com/document/fortianalyzer/6.0.2/administration-guide/598322/creating-output-profiles
What must you configure on FortiAnalyzer to upload a FortiAnalyzer report to a supported external server? (Choose two.)
What must you configure on FortiAnalyzer to upload a FortiAnalyzer report to a supported external server? (Choose two.)A . SFTP, FTP, or SCP serverB . Mail serverC . Output profileD . Report schedulingView AnswerAnswer: AC Explanation: https://docs.fortinet.com/document/fortianalyzer/6.0.2/administration-guide/598322/creating-output-profiles
What does the disk quota refer to?
You have recently grouped multiple FortiGate devices into a single ADOM. System Settings > Storage Info shows the quota used. What does the disk quota refer to?A . The maximum disk utilization for each device in the ADOMB . The maximum disk utilization for the FortiAnalyzer modelC . The maximum...
Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?
Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?A . Antivirus logsB . Web filter logsC . IPS logsD . Application control logsView AnswerAnswer: B Explanation: Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/3600_FortiView/0200_Using_FortiView/1200_Compromised_hosts_page.htm?TocPath=FortiView%7CUsing%20FortiView%7C_____6
What FortiGate process caches logs when FortiAnalyzer is not reachable?
What FortiGate process caches logs when FortiAnalyzer is not reachable?A . logfiledB . sqlplugindC . oftpdD . miglogdView AnswerAnswer: D Explanation: Reference: https://forum.fortinet.com/tm.aspx?m=143106
How do you restrict an administrator’s access to a subset of your organization’s ADOMs?
How do you restrict an administrator’s access to a subset of your organization’s ADOMs?A . Set the ADOM mode to AdvancedB . Assign the ADOMs to the administrator’s accountC . Configure trusted hostsD . Assign the default Super_User administrator profileView AnswerAnswer: B Explanation: https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/717578/assigning-administrators-to-an-adom
What happens when you rebuild the new ADOM database?
You’ve moved a registered logging device out of one ADOM and into a new ADOM. What happens when you rebuild the new ADOM database?A . FortiAnalyzer resets the disk quota of the new ADOM to default.B . FortiAnalyzer migrates archive logs to the new ADOM.C . FortiAnalyzer migrates analytics logs...
