Certification Provider:Â FortinetExam: FCP: Forti Manager 7.2 AdministratorExam Code:Â NSE5 FMG v7.2Total Question: 72Question per Quiz: 35Updated On: 06 April 2024Note: In order to practice all the Q/A's, you have to practice multiple time. Question's and Answer's will be presented randomly and will help you get hands-on for real exam. 1. An administrator configures a new OSPF route on FortiManager and has not yet pushed the changes to the managed FortiGate device. In which database will the configuration be saved? Device-level database ADOM-level database Configuration-level database Revision history database None 2. Refer to the exhibit. What is the purpose of setting ADOM Mode to Advanced? This setting disables concurrent ADOM access and adds ADOM locking. This setting allows you to assign a VDOM from a single device to a different ADOM. This setting allows you to manage FortiGate chassis models. This setting enables the ADOMs feature on FortiManager. None 3. An administrator enabled workspace mode and now wants to delete an address object that is currently referenced in a firewall policy. Which two results can the administrator expect to happen? (Choose two.) FortiManager will disable the status of the address object. FortiManager will replace the deleted address object with the none address object in the referenced firewall policy. FortiManager will not allow the administrator to delete a referenced address object until the ADOM is locked. FortiManager will temporarily change the status of the referenced firewall policy. 4. View the following exhibit. What is the purpose of setting ADOM Mode to Advanced? The setting allows automatic updates to the policy package configuration for a managed device This setting allows you to assign different VDOMs from the same FortiGate to different ADOMs. The setting enables the ADOMs feature on FortiManager The setting disables concurrent ADOM access and adds ADOM locking None 5. Refer to the exhibit. An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.) The administrator must set the FortiManager ADOM mode to Advanced. The administrator must configure FortiManager in workspace mode. Admin A can access VDOM2 and VDOM3 with the super user profile. The FortiManager policies and objects database can be shared between the Financial and HR ADOMs. 6. An administrator is replacing a failed device on FortiManager by running the following command: execute device replace sn . Which device name and serial number must the administrator use? The device name of the new device and serial number of the failed device. The device name and serial number of the new device. The device name and serial number of the failed device. The device name of the failed device and serial number of the new device. None 7. An administrator enabled workspace mode and now wants to delete an address object that is currently referenced in a firewall policy. Which two results can the administrator expect to happen? (Choose two.) FortiManager will disable the status of the address object. FortiManager will temporarily change the status of the referenced firewall policy. FortiManager will replace the deleted address object with the none address object in the referenced firewall policy. FortiManager will not allow the administrator to delete a referenced address object until the ADOM is locked. 8. How are bulk configuration changes made using FortiManager CLI scripts? (Choose two.) When run on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation. When run on the Device Database, changes are applied directly to the managed FortiGate device. When run on the All FortiGate in ADOM, changes are automatically installed without the creation of a new revision history. 9. Refer to the exhibit. Given the configuration shown in the exhibit, how did Forti Manager handle the service category named General? FortiManager ignored the firewall service category General and deleted the duplicate value in its database. FortiManager ignored the firewall service category General but created a new service category in its database. Forti Manager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database. Forti Manager ignored the firewall service category General and did not update its database with the value. None 10. Refer to the exhibit.On Forti Manager, an administrator created a new system template named Training with two new DNS addresses. During the installation preview stage, the administrator notices that central-management settings need to be purged.What can be the main reason for the central-management purge command? The DNS addresses in the default system settings are the same as the Training system template. The Training system template has a default FortiGuard widget. The Remote-FortiGate device does not have any DNS server-list configured in the central-management settings. The ADOM is locked by another administrator. None 11. Which two statements about Security Fabric integration with FortiManager are true? (Choose two.) The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices. The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices. The Security Fabric license, group name, and password are required for the FortiManager Security Fabric integration. The Security Fabric settings are part of the device-level settings. 12. What will be the result of reverting to a previous revision version in the revision history? It will generate a new version ID and remove all other revision history versions. It will tag the device settings status as Auto-Update. It will install configuration changes to managed device automatically. It will modify the device-level database. None 13. What is the purpose of ADOM revisions? To save the FortiManager configuration in the System Checkpoints To save the current state of all policy packages and objects for an ADOM To revert individual policy packages and device-level settings for a managed FortiGate To save the current state of the whole ADOM None 14. Given the configuration shown in the exhibit, which two statements are true? The Forti Manager ADOM workspace mode is set to Normal. An administrator can also lock the Local-FortiGate-1 policy package. Forti Manager is in workflow mode. The FortiManager ADOM is locked by the administrator. 15. If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.) FortiGate is discovered by FortiManager through the FortiGate NATed IP address. If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel. During discovery, the FortiManager NATed IP address is not set by default on FortiGate. FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management. 16. What are two outcomes of ADOM revisions? (Choose two.) ADOM revisions can save the current size of the whole ADOM ADOM revisions can significantly increase the size of the configuration backups. ADOM revisions can create System Checkpoints for the FortiManager configuration ADOM revisions can save the current state of all policy packages and objects for an ADOM 17. Which two conditions trigger FortiManager to create a new revision history? (Choose two.) When configuration revision is reverted to previous revision in the revision history When FortiManager is auto-updated with configuration changes made directly on a managed device When changes to device-level database is made on FortiManager When FortiManager installs device-level changes to a managed device 18. An administrator run the reload failure command: diagnose test deploymanager reload config on FortiManager. What does this command do? It installs the latest configuration on the specified FortiGate and update the revision history database. It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate. It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database. It installs the provisioning template configuration on the specified FortiGate. None 19. Which configuration setting for FortiGate is part of an ADOM-level database on FortiManager? Routing Security profiles SNMP NSX-T Service Template None 20. Which two statements about an ADOM set in Normal mode on Forti Manager are true? It supports the FortiManager script feature. FortiManager automatically installs the configuration difference in revisions on the managed FortiGate. You cannot assign the same ADOM to multiple administrators. It allows making configuration changes for managed devices on FortiManager panes. 21. Refer to the exhibit. An administrator wants to create a policy on the Staging ADOM in backup mode, and install it on the FortiGate device in the same ADOM. How can the administrator perform this task? The administrator must change the ADOM mode to Advanced to bring the FortiManager online. The administrator must use the Policy & Objects section to create a policy first. The administrator must use the FortiManager script. The administrator must disable the FortiManager offline mode first. None 22. Refer to the exhibit. Which statement about the object named ALL is true? FortiManager installed the object ALL with the updated value. FortiManager created the object ALL as a unique entity in its database, which can be only used by this managed FortiGate. FortiManager updated the object ALL using the FortiManager value in its database. FortiManager updated the object ALL using the FortiGate value in its database. None 23. What does a policy package status of Never Installed indicate? The policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager. The policy configuration has been changed on FortiManager and changes have not yet been installed on the managed device. FortiManager is unable to determine the policy package status. The policy package was never imported after a device was registered on Forti Manager. None 24. Which configuration setting for FortiGate is part of a device-level database on FortiManager? Security profiles Firewall policies VIP and IP Pools Routing None 25. Refer to the exhibit. An administrator is about to add the FortiGate device to FortiManager using the discovery process. FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings. What is the expected result? During discovery, FortiManager sets the FortiManager NATed IP address on FortiGate. During discovery, FortiManager uses only the FortiGate serial number to establish the connection. During discovery, FortiManager sets both the FortiManager NATed IP address and NAT device IP address on FortiGate. During discovery, FortiManager sets the NATed device IP address on FortiGate. None 26. Which two items does an FGFM keepalive message include? (Choose two.) FortiGate configuration checksum FortiGate IPS version FortiGate license information FortiGate uptime 27. An administrator would like to review, approve or reject all the firewall policy changes made by the junior administrators. How should the workspace mode settings be configured on FortiManager? Set to workflow and using the ADOM locking feature Set to read/write and using the policy locking feature Set to workspace and using the policy locking feature Set to normal and using the approval group feature None 28. You are moving managed FortiGate devices from one ADOM to a new ADOM. Which statement correctly describes the expected result? Policy packages will be imported into the new ADOM automatically. The shared device settings will be installed automatically. The shared policy package will not be moved to the new ADOM. Any unused objects from a previous ADOM are moved to the new ADOM automatically. None 29. Refer to the exhibit. Which statement is true about the Forti Manager ADOM policy tab based on the API request? The API command has requested the policy tab permissions information only. The API command has failed when requesting policy tab permissions information. The API command has applied to customer with ID: 200. The API command has enabled both central NAT and interface policy on the policy tab. None 30. An administrator is in the process of moving the system template profile between ADOMs by running the following command: execute fmprofile import-profile ADOM2 3547 /tmp/myfile Where does the administrator import the file from? ADOM2 File system ADOM1 ADOM2 object database None Time's up
