Free Fortinet FCP_FAZ_AD-7.4 Exam Actual Questions

The questions for FCP_FAZ_AD-7.4 were last updated On Nov 20, 2024

Question No. 1

An administrator, fortinet, can view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mail server that can be used to send alert emails.

What can be the problem?

Show Answer Hide Answer
Correct Answer: C

The Standard_User profile allows viewing logs and performing some device management tasks but typically does not allow configuring global settings like creating a mail server for alert emails. To create a mail server, the administrator would need to have a profile with higher privileges, such as Super_User or a custom profile with the necessary permissions.


Question No. 2

Which statement about the communication between FortiGate high availability (HA) clusters and FortiAnalyzer is true?

Show Answer Hide Answer
Correct Answer: B

This allows FortiAnalyzer to correctly identify and process logs from different members of the HA cluster.


Question No. 3

An administrator has moved a FortiGate device from the root ADOM to ADOM1.

Which two statements are true regarding logs? (Choose two.)

Show Answer Hide Answer
Correct Answer: A, D

When a device is moved from one ADOM to another, analytics logs can be moved automatically, but you may need to rebuild the database for the logs to be fully transferred and usable in the new ADOM. Archived logs, however, do not move automatically between ADOMs.


Question No. 4

Refer to the exhibit.

What is the purpose of configuring FortiAnalyzer with the settings displayed in the image?

Show Answer Hide Answer
Correct Answer: D

The settings displayed in the image show the creation of a VLAN interface on FortiAnalyzer. The VLAN ID is set to 100, and it is associated with port 5.

The purpose of configuring a VLAN interface like this is generally: To improve security.

By creating a VLAN, traffic can be segmented into isolated networks, which helps limit access and enhances security by reducing the broadcast domain and keeping different types of traffic (e.g., management, user, and data traffic) separate.


Question No. 5

Refer to the exhibit.

The exhibit shows the creation of a new administrator on FortiAnalyzer. The new account uses the credentials stored on an LDAP server.

Why would an administrator configure a password for this account?

Show Answer Hide Answer
Correct Answer: A

When using LDAP for authentication, a password can be set locally on FortiAnalyzer as a fallback option in case the LDAP server becomes unreachable. This ensures that the administrator can still log in if there are issues with the LDAP server.