FCP_FAZ_AD-7.4 Free Practice Test

View the exhibit:

What does the 1000MB maximum for disk utilization refer to?

1. A. The disk quota for the FortiAnalyzer model
2. B. The disk quota for all devices in the ADOM
3. C. The disk quota for each device in the ADOM
4. D. The disk quota for the ADOM type

Correct Answer: B
The 1000MB maximum for disk utilization refers to the total disk quota allocated for storing logs from all devices within the specific ADOM (Autonomous Domain) you're configuring.

What is the purpose of the FortiAnalyzer command diagnose system print netstat?

1. A. It provides network statistics for active connections, including the protocols, IP addresses, and connection states.
2. B. It provides the complete routing table, including directly connected routes.
3. C. It provides the static DNS table, including the host names and their expiration timers.
4. D. It provides NTP server information, including server IP
5. E. stratum, poll time, and latency.

Correct Answer: A
The diagnose system print netstat command in FortiAnalyzer provides detailed information on active network connections, similar to the netstat command found in many operating systems.

Refer to the exhibit.

Based on the output, what can you conclude about the FortiAnalyzer logging status?

1. A. The connection between FortiGate and FortiAnalyzer is overloaded.
2. B. FortiGate has logs to send, but FortiAnalyzer is unavailable.
3. C. FortiGate is configured to send logs in batches.
4. D. FortiGate is sending logs again after it performed a reboot.

Correct Answer: B
The output shows that FortiGate has sent a large number of logs (sent=180189698), but some logs have failed to be sent (failed=4507). This suggests that FortiAnalyzer was temporarily unavailable or had an issue receiving logs, leading to the failure count. There are no logs cached or dropped, indicating FortiGate is still attempting to send logs but with some failures.

Which two statements regarding ADOM modes are true? (Choose two.)

1. A. In normal mode, the disk quota of the ADOM is fixed and cannot be modified, but in advanced mode, the disk quota of the ADOM is flexible.
2. B. You can change ADOM modes only through the CLI.
3. C. In an advanced mode ADOM, you can assign FortiGate VDOMs from a single FortiGate device to multiple FortiAnalyzer ADOMs.
4. D. Normal mode is the default ADOM mode.

Correct Answer: CD

Which two methods can you use to restrict administrative access on FortiAnalyzer? (Choose two.)

1. A. Configure trusted hosts.
2. B. Limit access to specific virtual domains.
3. C. Fabric connectors to external LDAP servers.
4. D. Use administrator profiles.

Correct Answer: AD
Configure trusted hosts.
Trusted hosts restrict administrative access to FortiAnalyzer by limiting the IP addresses or subnets from which administrators can log in.
Use administrator profiles.
Administrator profiles define roles and permissions, restricting what specific administrators can access and manage on FortiAnalyzer.
The other options are not applicable because:
Limiting access to specific virtual domains is not applicable to FortiAnalyzer, as virtual domains (VDOMs) are a concept used in FortiGate, not FortiAnalyzer.
Fabric connectors to external LDAP servers are used for authentication purposes but do not directly restrict administrative access based on roles or IP addresses.