NSE5_FMG-7.0 Dumps NSE5_FMG-7.0 Braindumps NSE5_FMG-7.0 Real Questions NSE5_FMG-7.0 Practice Test NSE5_FMG-7.0 Actual Questions Fortinet NSE5_FMG-7.0 Fortinet NSE 5 - FortiManager 7.0 https://killexams.com/pass4sure/exam-detail/NSE5_FMG-7.0 Question: 14 An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1? A. When creating a new policy package, the administrator can select the option to assign the global policy package to the new policy package B. When a new policy package is created, the administrator needs to reapply the global policy package to ADOM1. C. When a new policy package is created, the administrator must assign the global policy package from the global ADO E. When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package. Answer: D Explanation: Reference: https://help.fortinet.com/fmgr/50hlp/56/5-6- 2/FortiManager_Admin_Guide/1200_Policy%20and%20Objects/0800_Managing%20policy%20packages/1200_Assign%20a%20global%20policy%20package.htm Question: 15 You are moving managed FortiGate devices from one ADOM to a new ADOM. Which statement correctly describes the expected result? A. Any pending device settings will be installed automatically B. Any unused objects from a previous ADOM are moved to the new ADOM automatically C. The shared policy package will not be moved to the new ADOM D. Policy packages will be imported into the new ADOM automatically Answer: C Explanation: Reference: https://community.fortinet.com/t5/FortiManager/Technical-Note-How-to-move-objects-to-new-ADOM-on-FortiManager/ta-p/198342 Question: 16 In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state? A. Secondary device with highest priority will automatically be promoted to the primary role, and manually reconfigure all other secondary devices to point to the new primary device B. Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device. C. Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device. D. FortiManager HA state transition is transparent to administrators and does not require any reconfiguration. Answer: C FortiManager_6.4_Study_Guide-Online C page 346 FortiManager HA doesn’t support IP takeover where an HA state transition is transparent to administrators. If a failure of the primary occurs, the administrator must take corrective action to resolve the problem that may include invoking the state transition. If the primary device fails, the administrator must do the following in order to return the FortiManager HA to a working state: Question: 17 When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel? A. After 15 minutes, FortiGate will unset all CLI commands that were part of the installation that caused the tunnel to go down. B. FortiManager will revert and install a previous configuration revision on the managed FortiGate. C. FortiGate will reject the CLI commands that will cause the tunnel to go down. D. FortiManager will not push the CLI commands as a part of the installation that will cause the tunnel to go down. Answer: A Explanation: Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/067f5236-ca6d-11e9-8977-00505692583a/FGFM-6.2- Communications_Protocol_Guide.pdf page 17 Question: 18 View the following exhibit. If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.) A. FortiGate is discovered by FortiManager through the FortiGate NATed IP address. B. FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management. C. During discovery, the FortiManager NATed IP address is not set by default on FortiGate. D. If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel. Answer: AC Explanation: Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration. Question: 19 An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message. Which troubleshooting step should you take to resolve the issue? A. Make sure FortiManager Access is enabled in the administrator profile B. Make sure Offline Mode is disabled C. Make sure the administrator IP address is part of the trusted hosts. D. Make sure ADOMs are enabled and the administrator has access to the Global ADOM Answer: C Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets. Reference: https://docs.fortinet.com/document/fortimanager/6.0.3/administration-guide/107347/trusted-hosts Question: 20 An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators. How should the Workspace mode be configured on FortiManager? A. Set to workflow and use the ADOM locking feature B. Set to read/write and use the policy locking feature C. Set to normal and use the policy locking feature D. Set to disable and use the policy locking feature Answer: A Explanation: Reference: https://help.fortinet.com/fmgr/50hlp/52/5-2-0/FMG_520_Online_Help/200_What’s-New.03.03.html Question: 21 An administrator wants to delete an address object that is currently referenced in a firewall policy. What can the administrator expect to happen? A. FortiManager will not allow the administrator to delete a referenced address object B. FortiManager will disable the status of the referenced firewall policy C. FortiManager will replace the deleted address object with the none address object in the referenced firewall policy D. FortiManager will replace the deleted address object with all address object in the referenced firewall policy Answer: C Explanation: Reference: https://help.fortinet.com/fmgr/50hlp/56/5-6- 2/FortiManager_Admin_Guide/1200_Policy%20and%20Objects/1200_Managing%20objects/0800_Remove%20an%20object.htm Question: 22 Which two settings must be configured for SD-WAN Central Management? (Choose two.) A. SD-WAN must be enabled on per-ADOM basis B. You can create multiple SD-WAN interfaces per VDOM C. When you configure an SD-WAN, you must specify at least two member interfaces. D. The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies. Answer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