NSE5_FAZ-7.0 Exam Questions

Refer to the exhibit. Which two statements are true regarding enabling auto-cache on FortiAnalyzer? (Choose two.)

Which two statements are true regarding high availability (HA) on FortiAnalyzer? (Choose two.)

An administrator has moved FortiGate A from the root ADOM to ADOM1. Which two statements are true regarding logs? (Choose two.)

Which two actions should an administrator take to view Compromised Hosts on FortiAnalyzer? (Choose two.)

In Log View, you can use the Chart Builder feature to build a dataset and chart based on the filtered search results. Similarly, which feature you can use for FortiView?

What can you do on FortiAnalyzer to restrict administrative access from specific locations?

What are event handlers?

Which two FortiAnalyzer features allow you to automatically build a dataset and chart based on a filtered search result? (Choose two.)

What is the main purpose of deploying RAID with FortiAnalyzer?

Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)

Which daemon is responsible for enforcing raw log file size?

An administrator has configured the following settings: config system global set log-checksum md5-auth end What is the significance of executing this command?

Which two of the following must you configure on FortiAnalyzer to email a FortiAnalyzer report externally? (Choose two.)

For which two purposes would you use the command set log checksum? (Choose two.)

Refer to the exhibit. What does the data point at 14:55 tell you?

You are using RAID with a FortiAnalyzer that supports software RAID, and one of the hard disks on FortiAnalyzer has failed. What is the recommended method to replace the disk?

It is a best practice to upload FortiAnalyzer local logs to a remote server. Which three remote servers are supported for the upload? (Choose three.)

Which database language does FortiAnalyzer support for the purposes of logging and reporting?

What should you always do after erasing the FortiAnalyzer configuration on flash?

In the FortiAnalyzer FortiView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IP addres...

You have recently grouped multiple FortiGate devices into a single ADOM. System Settings > Storage Info shows the quota used. What does the disk quota refer to?

Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?

You need to upgrade your FortiAnalyzer firmware. What happens to the logs being sent to FortiAnalyzer from FortiGate during the time FortiAnalyzer is temporarily unavailable?

After you have moved a registered logging device out of one ADOM and into a new ADOM, what is the purpose of running the following CLI command? execute sql-local rebuild-adom <new-...

If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?

If you upgrade the FortiAnalyzer firmware, which report element can be affected?

FortiAnalyzer reports are dropping analytical data from 15 days ago, even though the data policy setting for analytics logs is 60 days. What is the most likely problem?

Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?

What is included in the disk quota for each ADOM on the FortiAnalyzer?

When generating reports on FortiAnalyzer, macros can be used to include additional data. Which two statements about macros are true? (Choose two.)

When you move a FortiGate device from one ADOM to a new ADOM, what is the purpose of rebuilding the new ADOM database?

How can you configure FortiAnalyzer to permit administrator logins from only specific locations?

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

What is the purpose of the following CLI command?

View the exhibit. What does the data point at 14:35 tell you?

What remote authentication servers can you configure to validate your FortiAnalyzer administrator logons? (Choose three)

What statements are true regarding disk log quota? (Choose two)

What statements are true regarding FortiAnalyzer 's treatment of high availability (HA) dusters? (Choose two)

What are the operating modes of FortiAnalyzer? (Choose two)

Which two external servers can you configure to validate administrator logins? (Choose two.)

On the RAID management page, the disk status is listed as Initializing. What does the status Initializing indicate about what the FortiAnalyzer is currently doing?

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two....

When you perform a system backup, what does the backup configuration contain? (Choose two.)

Which clause is considered mandatory in SELECT statements used by the FortiAnalyzer to generate reports?

What is the purpose of a dataset query in FortiAnalyzer?

Logs are being deleted from one of the ADOMs earlier than the configured setting for archiving in the data policy. What is the most likely problem?

Which two statements express the advantages of grouping similar reports? (Choose two.)

What are analytics logs on FortiAnalyzer?

What is Log Insert Lag Time on FortiAnalyzer?

Refer to the exhibit. What is the purpose of using the Chart Builder feature on FortiAnalyzer?