• Home
  • Articles
  • [Feb-2025 Newly Released] Pass NSE5_FMG-7.2 Exam - Real Questions & Answers [Q19-Q35]

[Feb-2025 Newly Released] Pass NSE5_FMG-7.2 Exam - Real Questions & Answers [Q19-Q35]

Share

[Feb-2025 Newly Released] Pass NSE5_FMG-7.2 Exam - Real Questions and Answers

Pass NSE5_FMG-7.2 Review Guide, Reliable NSE5_FMG-7.2 Test Engine

NEW QUESTION # 19
Which two settings must be configured for SD-WAN Central Management? (Choose two.)

  • A. When you configure an SD-WAN, you must specify at least two member interfaces.
  • B. You can create multiple SD-WAN interfaces per VDOM
  • C. The first step in creating an SD-WAN using FortiManager is to create two SD-WAN firewall policies.
  • D. SD-WAN must be enabled on per-ADOM basis

Answer: A,D


NEW QUESTION # 20
An administrator has enabled Service Access on FortiManager. What is the purpose of Service Access on the FortiManager interface?

  • A. It allows administrative access to FortiManager.
  • B. It allows FortiManager to respond to requests for FortiGuard services from FortiGate devices.
  • C. It allows third-party applications to gain read/write access to FortiManager.
  • D. It allows FortiManager to determine the connection status of managed devices.

Answer: B

Explanation:
Enabling Service Access on FortiManager can include settings that allow it to act as a proxy or intermediary for FortiGuard services to managed FortiGate devices. This is particularly useful in network architectures where direct communication from FortiGate devices to FortiGuard servers is restricted or not possible.


NEW QUESTION # 21
Refer to the exhibit.

An administrator is about to add the FortiGate device to FortiManager using the discovery process FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings What is the expected result?

  • A. During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate
  • B. During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate
  • C. During discovery FortiManager uses only the FortiGate serial number to establish the connection
  • D. During discovery FortiManager sets the NATed device IP address on FortiGate

Answer: D


NEW QUESTION # 22
View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install Oncolumn?

  • A. The Install On column value represents successful installation on the managed devices
  • B. Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
  • C. Policy seq#3 will be not installed on any managed device
  • D. Policy seq#3 will be installed on the Trainer[NAT] VDOM only

Answer: B


NEW QUESTION # 23
Refer to the exhibit.

Which two statements about an ADOM set in Normal mode on FortiManager are true? (Choose two.)

  • A. It allows making configuration changes for managed devices on FortiManager panes
  • B. FortiManager automatically installs the configuration difference in revisions on the managed FortiGate
  • C. It supports the FortiManager script feature
  • D. You cannot assign the same ADOM to multiple administrators

Answer: A,C

Explanation:
"FortiGate units in the ADOM will query their own configuration every 5 seconds. If there has been a configuration change, the FortiGate unit will send a diff revision on the change to the FortiManager using the FGFM protocol."


NEW QUESTION # 24
What does a policy package status ofConflictindicate?

  • A. The policy package reports inconsistencies and conflicts during aPolicy Consistency Check.
  • B. The policy package does not have a FortiGate as the installation target.
  • C. The policy package configuration has been changed on both FortiManager and the managed device independently.
  • D. The policy configuration has never been imported after a device was registered on FortiManager.

Answer: C


NEW QUESTION # 25
What will happen if FortiAnalyzer features are enabled on FortiManager?

  • A. FortiManager will reboot
  • B. FortiManager will send the logging configuration to the managed devices so the managed devices will start sending logs to FortiManager
  • C. FortiManager can be used only as a logging device.
  • D. FortiManager will enable ADOMs automatically to collect logs from non-FortiGate devices

Answer: A


NEW QUESTION # 26
An administrator, Trainer, who is assigned theSuper_Userprofile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that hasSuper_Userrights over the device from approving a workflow session?

  • A. Trainer is not a part of workflow approval group
  • B. Trainer does not have full rights over this ADOM
  • C. Student, who submitted the workflow session, must first self-approve the request
  • D. Trainer must close Student's workflow session before approving the request

Answer: A

Explanation:
Reference:https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG-FAZ/0800_ADOMs/1800_Workflow/0600_Work


NEW QUESTION # 27
Refer to the exhibit.

Given the configuration shown in the exhibit, which two statements are true? (Choose two.)

  • A. An administrator can also lock the Local-FortiGate-1 policy package.
  • B. FortiManager is in workflow mode.
  • C. The FortiManager ADOM workspace mode is set to Normal.
  • D. The FortiManager ADOM is locked by the administrator.

Answer: A,C

Explanation:
https://docs.fortinet.com/document/fortimanager/7.2.4/administration-guide/397419/lock-an-individual-policy


NEW QUESTION # 28
Refer to the exhibit.

How will FortiManager try to get updates for antivirus and IPS?

  • A. From the list of configured override servers or public FDN servers
  • B. From the configured override server IP address 10.0.1.50 only
  • C. From public FDNI server IP address with the fourth highest octet only
  • D. From the default server fds1.fortinet.com

Answer: A


NEW QUESTION # 29
View the following exhibit:

How will FortiManager try to get updates for antivirus and IPS?

  • A. From the list of configured override servers with ability to fall back to public FDN servers
  • B. From the configured override server list only
  • C. From the default serverfdsl.fortinet.com
  • D. From public FDNI server with highest index number only

Answer: A

Explanation:
Reference:https://community.fortinet.com/t5/Fortinet-Forum/Clarification-of-FortiManager-s-quot-Server-Overr


NEW QUESTION # 30
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?

  • A. Any pending device settings will be installed automatically
  • B. Policy packages will be imported into the new ADOM automaticallyD
  • C. Any unused objects from a previous ADOM are moved to the new ADOM automatically
  • D. The shared policy package will not be moved to the new ADOM

Answer: D

Explanation:
Reference:https://community.fortinet.com/t5/FortiManager/Technical-Note-How-to-move-objects-to-new-ADOM


NEW QUESTION # 31
An administrator has enabledService Accesson FortiManager.
What is the purpose ofService Accesson the FortiManager interface?

  • A. Allows FortiManager to run real-time debugs on the managed devices
  • B. Allows FortiManager to respond to request for FortiGuard services from FortiGate devices
  • C. Allows FortiManager to automatically configure a default route
  • D. Allows FortiManager to download IPS packages

Answer: B

Explanation:
FortiManager 6.2 Study guide page 350


NEW QUESTION # 32
Refer to the exhibit.

A service provider administrator has assigned a global policy package to a managed customer ADOM named My_ADOM, which has four policy packages. The customer administrator has access onlytoMy_ADOM.
How can customer or service provider administrators remove both global header and footer policies from the policy package named Shared_Package?

  • A. The service provider administrator can unassign both policies from the global ADOM.
  • B. The service provider administrator can unassign both global policies from My_ADOM.
  • C. The customer administrator can unassign both polices by locking My_ADOM.
  • D. The customer administrator can unassign both global polices from My_ADOM.

Answer: A

Explanation:
FortiManager_7.2_Study_Guide-Online.pdf page 17: In the global ADOM layer, you create header and footer policy rules. You can assing these policy rules to multiple ADOMs.


NEW QUESTION # 33
What are two outcomes of ADOM revisions? (Choose two.)

  • A. ADOM revisions can create System Checkpoints for the FortiManager configuration
  • B. ADOM revisions can significantly increase the size of the configuration backups.
  • C. ADOM revisions can save the current size of the whole ADOM
  • D. ADOM revisions can save the current state of all policy packages and objects for an ADOM

Answer: B,D


NEW QUESTION # 34
Which configuration setting for FortiGate is part of an ADOM-level database on FortiManager?

  • A. Routing
  • B. NSX-T Service Template
  • C. Security profiles
  • D. SNMP

Answer: C


NEW QUESTION # 35
......

100% Free NSE5_FMG-7.2 Daily Practice Exam With 104 Questions: https://www.practicevce.com/Fortinet/NSE5_FMG-7.2-practice-exam-dumps.html

NSE5_FMG-7.2 Test Engine Practice Test Questions, Exam Dumps: https://drive.google.com/open?id=1yHJiUAep1q-y02AGA25KTOKGJ9O7TVvO

Related Articles

more
Fortinet NSE5_FMG-7.2 Certification Practice Exam