• Home
  • Articles
  • Give Push to your Success with NSE 5 Network Security Analyst NSE5_FMG-7.2 Exam Questions [Q20-Q43]

Give Push to your Success with NSE 5 Network Security Analyst NSE5_FMG-7.2 Exam Questions [Q20-Q43]

Share

Give Push to your Success with NSE 5 Network Security Analyst NSE5_FMG-7.2 Exam Questions

NSE5_FMG-7.2 100% Guarantee Download NSE5_FMG-7.2 Exam PDF Q&A

NEW QUESTION # 20
Which two items does an FGFM keepalive message include? (Choose two.)

  • A. FortiGate IPS version
  • B. FortiGate license information
  • C. FortiGate configuration checksum
  • D. FortiGate uptime

Answer: A,C

Explanation:
Reference:https://docs.fortinet.com/document/fortimanager/6.2.0/fortigate-fortimanager-communications-protoc


NEW QUESTION # 21
Which two settings must be configured for SD-WAN Central Management? (Choose two.)

  • A. The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
  • B. You can create multiple SD-WAN interfaces per VDOM
  • C. SD-WAN must be enabled on per-ADOM basis
  • D. When you configure an SD-WAN, you must specify at least two member interfaces.

Answer: C,D


NEW QUESTION # 22
An administrator would like to create an SD-WAN default static route for a newly created SD-WAN using the FortiManager GUI. Both port1 and port2 are part of the SD-WAN member interfaces.
Which interface must the administrator select in the static route device drop-down list?

  • A. auto-discovery
  • B. port2
  • C. port1
  • D. virtual-wan-link

Answer: D


NEW QUESTION # 23
View the following exhibit, which shows theDownload Import Report:

Why it is failing to import firewall policy ID 2?

  • A. Policy ID 2 does not have ADOM Interface mapping configured on FortiManager
  • B. Policy ID 2 is configured from interface any to port6 FortiManager rejects to import this policy because any interface does not exist on FortiManager
  • C. Policy ID 2 for this managed FortiGate already exists on FortiManager in policy package named Remote-FortiGate.
  • D. The address object used in policy ID 2 already exist in ADON database with any as interface association and conflicts with address object interface association locally on the FortiGate

Answer: D

Explanation:
FortiManager_6.4_Study_Guide-Online - page 331 & 332


NEW QUESTION # 24
Refer to the exhibit.

On FortiManager, an administrator created a new system template namedTrainingwith two new DNS addresses. During the installation preview stage, the administrator notices that central-management settings need to be purged.
What can be the main reason for the central-management purge command?

  • A. The Remote-FortiGate device does not have any DNS server-list configured in the central-management settings.
  • B. The DNS addresses in the default system settings are the same as the Training system template.
  • C. The ADOM is locked by another administrator.
  • D. The Training system template has a default FortiGuard widget.

Answer: A


NEW QUESTION # 25
Refer to the exhibit.

Which two statements about an ADOM set inNormalmode on FortiManager are true? (Choose two.)

  • A. You cannot assign the same ADOM to multiple administrators
  • B. It allows making configuration changes for managed devices on FortiManager panes
  • C. FortiManager automatically installs the configuration difference in revisions on the managed FortiGate
  • D. It supports the FortiManager script feature

Answer: B,D

Explanation:
"FortiGate units in the ADOM will query their own configuration every 5 seconds. If there has been a configuration change, the FortiGate unit will send a diff revision on the change to the FortiManager using the FGFM protocol."


NEW QUESTION # 26
Refer to the exhibit.

Given the configuration shown in the exhibit, what can you conclude from the installation targets m the Install On column? (Choose two)

  • A. Policy seq # 1 will be installed on the Remoto-FortiGate root[NAT] and Student[NAT] VDOMs only
  • B. Policy seq # 2 will not be installed on the Local-FortiGate root VDOM because there is no root VDOM in the Installation Target
  • C. Policy 3 will be installed on all FortiGate devices and vdom belongs to the ADOM
  • D. Policy seq # 3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
  • E. Policy seq # 3 will be skipped because no installation targets are specified

Answer: A,D


NEW QUESTION # 27
View the following exhibit.

Which statement is true regarding this failed installation log?

  • A. Policy ID 2 is installed without a source address
  • B. Policy ID 2 is installed without a source device
  • C. Policy ID 2 will not be installed
  • D. Policy ID 2 is installed in disabled state

Answer: C


NEW QUESTION # 28
An administrator is replacing a failed device on FortiManager by running the following command:
execute device replace sn <devname> <serialnum>.
Which device name and serial number must the administrator use?

  • A. The device name of the failed device and serial number of the new device
  • B. The device name and serial number of the new device
  • C. The device name and serial number of the failed device
  • D. The device name of the new device and serial number of the failed device

Answer: A


NEW QUESTION # 29
View the following exhibit.

An administrator is importing a new device to FortiManager and has selected the shown options. What will happen if the administrator makes the changes and installs the modified policy package on this managed FortiGate?

  • A. The unused objects that are not tied to the firewall policies in policy package will be deleted from the
  • B. The unused objects that are not tied to the firewall policies will remain as read-only locally on FortiGate
  • C. The unused objects that are not tied to the firewall policies will be installed on FortiGate
  • D. The unused objects that are not tied to the firewall policies locally on FortiGate will be deleted

Answer: D

Explanation:
FortiManager database


NEW QUESTION # 30
Refer to the exhibit.

Which statement is true about the FortiManager ADOM policy tab based on the API request?

  • A. The API command has failed when requesting policy tab permissions information.
  • B. The API command has requested the policy tab permissions information only.
  • C. The API command has enabled both central NAT and interface policy on the policy tab.
  • D. The API command has applied to customer with ID: 200.

Answer: C


NEW QUESTION # 31
Refer to the exhibit.

An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.
What is the purpose of this command?

  • A. It allows FortiGate to unset central management settings.
  • B. It allows FortiGate to reboot and recover the previous configuration from its configuration file.
  • C. It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.
  • D. It allows FortiGate to reboot and restore a previously working firmware image.

Answer: B

Explanation:
Reference:https://docs.fortinet.com/document/fortimanager/6.2.0/fortigate-fortimanager-communicationsprotoco


NEW QUESTION # 32
View the following exhibit.

An administrator has created a firewall address object, Training, which is used in the Local-FortiGate policy package. When the install operation is performed, which IP Netmask will be installed on the Local-FortiGate, for the Training firewall address object?

  • A. 10.0.1.0/24
  • B. 192.168.0.1/24
  • C. It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values
  • D. Local-FortiGate will automatically choose an IP Network based on its network interface settings.

Answer: A


NEW QUESTION # 33
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?

  • A. Any unused objects from a previous ADOM are moved to the new ADOM automatically
  • B. The shared policy package will not be moved to the new ADOM
  • C. Policy packages will be imported into the new ADOM automaticallyD
  • D. Any pending device settings will be installed automatically

Answer: B

Explanation:
Reference:https://community.fortinet.com/t5/FortiManager/Technical-Note-How-to-move-objects-to-new-ADOM


NEW QUESTION # 34
In addition to the default ADOMs, an administrator has created a new ADOM namedTrainingfor FortiGate devices. The administrator sent a device registration to FortiManager from a remote FortiGate. Which one of the following statements is true?

  • A. By default, the unregistered FortiGate will appear in the root ADOM.
  • B. The FortiGate will be added automatically to the default ADOM named FortiGate.
  • C. The FortiManager administrator must add the unregistered device manually to the unregistered device manually to the Training ADOM using the Add Device wizard
  • D. The FortiGate will be automatically added to the Training ADOM.

Answer: A

Explanation:
Reference:https://docs.fortinet.com/document/fortimanager/7.0.0/administration-guide/718923/root-adom


NEW QUESTION # 35
An administrator would like to authorize a newly-installed AP using AP Manager. What steps does the administrator need to perform to authorize an AP?

  • A. Authorize the new AP using AP Manager and install the policy package changes on the managed FortiGate.
  • B. Authorize the new AP using AP Manager and wait until the change is updated on the FortiAP. Changes to the AP's state do not require installation.
  • C. Authorize the new AP using AP Manager and install the device level settings on the managed FortiGate.
  • D. Changes to the AP's state must be performed directly on the managed FortiGate.

Answer: C


NEW QUESTION # 36
Refer to the exhibits.
Exhibit one.

Exhibit two.

An administrator created a new system template namedTrainingwith two new DNS addresses on FortiManager. During the installation preview stage, the administrator notices that many unset commands need to be pushed.
What can be the main reason for these unset commands?

  • A. The DNS addresses in the default system settings are the same as theTrainingsystem template
  • B. TheTrainingsystem template has other default settings
  • C. The ADOM is locked by another administrator
  • D. TheTrainingsystem template does not have assigned devices

Answer: B


NEW QUESTION # 37
Refer to the exhibit.

An administrator is about to add the FortiGate device to FortiManager using the discovery process FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings What is the expected result?

  • A. During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate
  • B. During discovery FortiManager uses only the FortiGate serial number to establish the connection
  • C. During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate
  • D. During discovery FortiManager sets the NATed device IP address on FortiGate

Answer: D


NEW QUESTION # 38
Refer to the exhibit.

You are using theQuick Installoption to install configuration changes on the managed FortiGate.
Which two statements correctly describe the result? (Choose two.)

  • A. It cannot be canceled once initiated and changes will be installed on the managed device
  • B. It will not create a new revision in the revision history
  • C. It installs device-level changes to FortiGate without launching theInstall Wizard
  • D. It provides the option to preview configuration changes prior to installing them

Answer: A,C

Explanation:
FortiManager_6.4_Study_Guide-Online - page 164
The Install Config option allows you to perform a quick installation of device-level settings without launching the Install Wizard. When you use this option, you cannot preview the changes prior to committing.
Administrator should be certain of the changes before using this install option, because the install can't be cancelled after the process is initiated.


NEW QUESTION # 39
Refer to the exhibit.

An administrator would like to create three ADOMs on FortiManager with different access levels based on departments.
What two conclusions can you draw from the design shown in the exhibit? (Choose two.)

  • A. The FortiManager policies and objects database can be shared between the Financial and HR ADOMs.
  • B. Admin A can access VDOM2 and VDOM3 with the super user profile.
  • C. The administrator must set the FortiManager ADOM mode to Advanced.
  • D. The administrator must configure FortiManager in workspace mode.

Answer: A,C


NEW QUESTION # 40
Which two conditions trigger FortiManager to create a new revision history? (Choose two.)

  • A. When configuration revision is reverted to previous revision in the revision history
  • B. When FortiManager is auto-updated with configuration changes made directly on a managed device
  • C. When changes to device-level database is made on FortiManager
  • D. When FortiManager installs device-level changes to a managed device

Answer: B,D


NEW QUESTION # 41
Refer to the exhibit showing a Download Import Report.
Why is it failing to import firewall policy ID 1?

  • A. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.
  • B. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
  • C. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
  • D. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.

Answer: A


NEW QUESTION # 42
View the following exhibit:

Which two statements are true if the script is executed using the Remote FortiGate Directly (via CLI) option? (Choose two.)

  • A. You must install these changes using Install Wizard
  • B. FortiManager provides a preview of CLI commands before executing this script on a managed FortiGate.
  • C. FortiManager will create a new revision history.
  • D. FortiGate will auto-update the FortiManager's device-level database.

Answer: C,D


NEW QUESTION # 43
......

Get NSE5_FMG-7.2 Actual Free Exam Q&As to Prepare Certification: https://testinsides.dumps4pdf.com/NSE5_FMG-7.2-valid-braindumps.html

Related Articles

more
Fortinet NSE5_FMG-7.2 Certification Practice Exam

Dumps4PDF ensure you get IT certification easily; you just need to use your spare time to practice the latest dumps pdf and remember the key points of exam dumps.

Latest Pass Dumps PDF

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Dumps4PDF NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy