Exam Code : NSE5_FAZ-7.0
Exam Name : Fortinet NSE 5 - FortiAnalyzer 7.0
Vendor Name :
"Fortinet"
Fortinet NSE 5 - FortiAnalyzer 7.0
https://killexams.com/pass4sure/exam-detail/NSE5_FAZ-7.0
Question: 29
You’ve moved a registered logging device out of one ADOM and into a new ADOM. What happens when you rebuild the new ADOM database?
FortiAnalyzer resets the disk quota of the new ADOM to default.
FortiAnalyzer migrates archive logs to the new ADOM.
alyzer removes logs from the old ADOM.
n: ortinet.com/kb/documentLink.do?externalID=FD40383 30
FortiAnalyzer to collect logs from a FortiGate device, what configuration is required? (Choose two.)
logging must be enabled on FortiGate cryption must be enabled
must be enabled
FortiGate must be registered with FortiAnalyzer
,D
n:
er you add and register a FortiGate device with the FortiAnalyzer unit, youmust also ensure that the FortiGate device is configured to send log alyzer unit.”
s.fortinet.com/uploaded/files/4614/FortiAnalyzer-5.4.6-Administration%20Guide.pdf
DOMs must be enabled to support the logging and reporting of NON-FORTIGATE devices, such as FortiCarrier, FortiClientEMS, FortiMail, FortiWeb, and FortiSandbox.”
31
the disk status Degraded mean for RAID management?
ore drives are missing from the FortiAnalyzer unit. The drive is no longer available to the operating system. tiAnalyzer device is writing to all the hard drives on the device in order to make the array fault tolerant. tiAnalyzer device is writing data to a newly added hard drive in order to restore the hard drive to an optimal state.
driveiIs no longer being used by the RAID controller
FortiAnalyzer migrates analytics logs to the new ADOM.
FortiAn
Question:
In order for
Remote
Log en
ADOMs D.
Pg 70: “aft s to
theFortiAn https://doc
Pg 45: “A
FortiCache,
Question:
What does
One or m
The For
The For
The hard
Question: 32
In FortiAnalyzer’s FormView, source and destination IP addresses from FortiGate devices are not resolving toa hostname. How can you resolve the source and destination IPs, without introducing any additionalperformance impact to FortiAnalyzer?
Configure local DNS servers on FortiAnalyzer
Resolve IPs on FortiGate
Configure # set resolve-ip enable in the system FortiView settings
Resolve IPs on a per-ADOM basis to reduce delay on FortiView while IPs resolve
Question: 33
What is the purpose of a dataset query in FortiAnalyzer?
It sorts log data into tables
It extracts the database schema
It retrieves log data from the database
It injects log data into the database
Reference: https://docs2.fortinet.com/document/fortianalyzer/6.0.4/administration-guide/148744/creating-datasets
34
statements are true regarding fabric connectors? (Choose two.)
uring fabric connectors to send notification to ITSM platform upon incidentcreation Is more efficient than third-party information from the For
onnectors allow to save storage costs and improve redundancy.
connector service does not require a separate license to send logs to cloud platform.
ut connections allow you to send real-time logs to pubic cloud accounts like Amazon S3, Azure Blob, and Google Cloud.
,D
35
administrator is failing to register a FortiClient EMS on the FortiAnalyzer device. be the reason for this failure?
alyzer is in an HA cluster.
mode should be set to advanced, in order to register the FortiClient EMS device. are not enabled on FortiAnalyzer.
ate license is required on FortiAnalyzer in order to register the FortiClient EMS device.
n:
https://help.fortinet.com/fa/faz50hlp/56/5-6-2/FMG-FAZ/0800_ADOMs/0015_FortiClient%20and%20ADOMs.htm
36
he CLI command # diagnose test application oftpd 3 help you to determine? evices and IP addresses are connecting to FortiAnalyzer
gs, if any, are reaching FortiAnalyzer DOMs are enabled and configured vices are registered and unregistered
Question:
Which two
Config tiAnalyzer
API.
Fabric c
Storage
Cloud-O
Answer: A
Question: The admin
What can
FortiAn
ADOM
ADOMs
A separ
Question:
What can t
A. What d B.What lo C.What A D.What de
https://docs.fortinet.com/document/fortianalyzer/6.2.5/cli-reference/395556/test#test_application
Question: 37
What are analytics logs on FortiAnalyzer?
Log type Traffic logs.
Logs that roll over when the log file reaches a specific size.
Logs that are indexed and stored in the SQL.
Raw logs that are compressed and saved to a log file.
Question: 38
Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)
Must configure the FortiAnalyzer end of the tunnel only–the FortiGate end is auto-negotiated.
Must establish an IPsec tunnel ID and pre-shared key.
IPsec cannot be enabled if SSL is enabled as well.
IPsec is only enabled through the CLI on FortiAnalyzer.
Question: 39
protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server ent log modification or tampering
ypt log communications
an identical set of logs to a second logging server
,B
40
statements are true regarding high availability (HA) on FortiAnalyzer? (Choose two.)
alyzer HA can function without VRRP. and VRRP is required only if you have more than two FortiAnalyzer devices in a cluster. alyzer HA supports synchronization of logs as well as some system and configuration settings.
ices in a FortiAnalyzer HA cluster must run in the same operation mode: analyzer or collector.
alyzer HA implementation is supported by many public cloud infrastructures such as AWS, Microsoft Azure, and Google Cloud.
,C
n:
https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FMG-FAZ/4600_HA/0000_HA.htm?TocPath=High%20Availability%7C 0
For which two purposes would you use the command set log checksum? (Choose two.)
To help
To prev
To encr
To send
Answer: A
Question: Which two
FortiAn
FortiAn
All dev
FortiAn