Weekend Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

NSE5_FAZ-7.2 Exam Dumps - Fortinet Certification Questions and Answers

Question # 34

A play book contains five tasks in total. An administrator executed the playbook and four out of five tasks finished successfully, but one task failed. What will be the status of the playbook after its execution?

Options:

A.

Success

B.

Failed

C.

Running

D.

Upstream_failed

Buy Now
Question # 35

You crested a playbook on FortiAnalyzer that uses a FortiOS connector

When configuring the FortiGate side, which type of trigger must be used so that the actions in an automation stitch are available in the FortiOS connector?

Options:

A.

FortiAnalyzer Event Handler

B.

Incoming webhook

C.

FortiOS Event Log

D.

Fabric Connector event

Buy Now
Question # 36

What purposes does the auto-cache setting on reports serve? (Choose two.)

Options:

A.

To reduce report generation time

B.

To automatically update the hcache when new logs arrive

C.

To reduce the log insert lag rate

D.

To provide diagnostics on report generation time

Buy Now
Question # 37

Which two statements are true regarding FortiAnalyzer log forwarding? (Choose two.)

Options:

A.

Both modes, forwarding and aggregation, support encryption of logs between devices.

B.

In aggregation mode, you can forward logs to syslog and CEF servers as well.

C.

Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.

D.

Forwarding mode forwards logs in real time only to other FortiAnalyzer devices.

Buy Now
Question # 38

Which statement about the FortiSOAR management extension is correct?

Options:

A.

It requires a FortiManager configured to manage FortiGate

B.

It requires a dedicated FortiSOAR device or VM.

C.

It does not include a limited trial by default.

D.

It runs as a docker container on FortiAnalyzer

Buy Now
Question # 39

If you upgrade the FortiAnalyzer firmware, which report element can be affected?

Options:

A.

Custom datasets

B.

Report scheduling

C.

Report settings

D.

Output profiles

Buy Now
Question # 40

Which two statements are true regarding the outbreak detection service? (Choose two.)

Options:

A.

New alerts are received by email.

B.

Outbreak alerts are available on the root ADOM only.

C.

An additional license is required.

D.

It automatically downloads new event handlers and reports.

Buy Now
Question # 41

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)

Options:

A.

A local wildcard administrator account

B.

A remote LDAP server

C.

A trusted host profile that restricts access to the LDAP group

D.

An administrator group

Buy Now
Question # 42

What happens when the IOC breach detection engine on FortiAnalyzer finds web logs that match a blocklisted IP address?

Options:

A.

The endpoint is marked as Compromised and. optionally, can be put in quarantine.

B.

FortiAnalyzer flags the associated host for further analysis.

C.

A new Infected entry is added for the corresponding endpoint.

D.

The detection engine classifies those logs as Suspicious

Buy Now
Question # 43

How are logs forwarded when FortiAnalyzer is using aggregation mode?

Options:

A.

Logs are forwarded as they are received and content files are uploaded at a scheduled time.

B.

Logs and content files are stored and uploaded at a scheduled time.

C.

Logs are forwarded as they are received.

D.

Logs and content files are forwarded as they are received.

Buy Now
Exam Code: NSE5_FAZ-7.2
Exam Name: Fortinet NSE 5 - FortiAnalyzer 7.2
Last Update: Feb 22, 2025
Questions: 137
NSE5_FAZ-7.2 pdf

NSE5_FAZ-7.2 PDF

$25.5  $84.99
 Add to Cart
NSE5_FAZ-7.2 Engine

NSE5_FAZ-7.2 Testing Engine

$28.5  $94.99
 Add to Cart
NSE5_FAZ-7.2 PDF + Engine

NSE5_FAZ-7.2 PDF + Testing Engine

$40.5  $134.99
 Add to Cart