Which two statements about log forwarding are true? (Choose two.)
A. Forwarded logs cannot be filtered to match specific criteria.
B. Logs are forwarded in real-time only.
C. You can use aggregation mode only with another FortiAnalyzer.
D. The client retains a local copy of the logs after forwarding.
正解:C,D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Which two statement are true regardless initial Logs sync and Log Data Sync for Ha on FortiAnalyzer?
A. When Logs Data Sync is turned on, the backup device will reboot and then rebuilt the log database with the synchronized logs.
B. With initial Logs Sync, when you add a unit to an HA cluster, the primary device synchronizes its logs with the backup device.
C. Log Data Sync provides real-time log synchronization to all backup devices.
D. By default, Log Data Sync is disabled on all backup devise.
正解:A,B
質問 3:
Refer to the exhibit.
Which statement is correct regarding the event displayed?
A. The risk source is isolated.
B. The security risk was blocked or dropped.
C. An incident was created from this event.
D. The security event risk is considered open.
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)
A. A local wildcard administrator account
B. A remote LDAP server
C. An administrator group
D. A trusted host profile that restricts access to the LDAP group
正解:A,B
質問 5:
When you perform a system backup, what does the backup configuration contain? (Choose two.)
A. System information
B. Authorized devices logs
C. Device list
D. Generated reports
正解:A,C
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
FortiAnalyzer centralizes which functions? (Choose three)
A. Security log analysis / forensics
B. Vulnerability assessment
C. Content archiving / data mining
D. Network analysis
E. Graphical reporting
正解:A,C,E
質問 7:
An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email.
What could be the problem?
A. Fortinet is assigned the Standard_ User administrator profile.
B. Fortinet is assigned the Restricted_ User administrator profile.
C. A trusted host is configured.
D. ADOM mode is configured with Advanced mode.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
Kawata -
アプリ版も付いているので移動時の勉強にも最適
全くのゼロからこの試験に挑もうとしている方にはうってつけの一冊と感じます。