● FCP - FortiAnalyzer 7.4 Administrator Exam Materials

Please note that the exam "FCP - FortiAnalyzer 7.4 Administrator" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiAnalyzer 7.6 Analyst Exam"

The new exam version is available on Brave-Dumps and can be purchased.



Question #11
Comment Image Comment Image Comment Image

Which two statements about deleting ADOMs are true? (Choose two answers)

  • A. Logs must be purged or migrated before you can delete an ADOM.
  • B. ADOMs with registered devices cannot be deleted.
  • C. Default ADOMs cannot be deleted.
  • D. The status of the ADOMs must be unlocked.

Question #12
Comment Image Comment Image Comment Image

Refer to the exhibit.

The capture displayed was taken on a FortiAnalyzer.

Why is a single IP address shown as the source for all logs received? (Choose one answer)

  • A. FortiAnalyzer is using the device MAC addresses to differentiate their logs.
  • B. The logs belong to devices that are part of a high availability (HA) cluster.
  • C. FortiAnalyzer is receiving logs from the root FortiGate of a Security Fabric.
  • D. The device sending logs has two VDOMs in the same ADOM.

Question #13
Comment Image Comment Image Comment Image

Refer to the exhibit.

What is the purpose of configuring FortiAnalyzer with the settings displayed in the image? (Choose one answer)

  • A. To increase reliability
  • B. To expand bandwidth
  • C. To maximize resiliency
  • D. To improve security

Question #14
Comment Image Comment Image Comment Image

An administrator, fortinet, can view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mail server that can be used to send alert emails.

What can be the problem?. (Choose one answer)

  • A. ADOM mode is configured with Advanced mode.
  • B. A trusted host is configured.
  • C. fortinet is assigned the default Standard_User administrative profile.
  • D. fortinet is assigned the default Restricted_User administrative profile.

Question #15
Comment Image Comment Image Comment Image

Which two elements are contained in a system backup created on FortiAnalyzer? (Choose two answers)

  • A. Report information
  • B. Database snapshot
  • C. System information
  • D. Logs from registered devices

Question #16
Comment Image Comment Image Comment Image

Which statement about the communication between FortiGate high availability (HA) clusters and FortiAnalyzer is true? (Choose one answer)

  • A. If devices were registered to FortiAnalyzer before forming a cluster, you can manually add them together.
  • B. FortiAnalyzer distinguishes each cluster member by the IP addresses in log message headers.
  • C. If the HA primary device becomes unavailable, you must remove it from the HA cluster list on FortiAnalyzer.
  • D. The FortiGate HA cluster must be in active-passive mode in order to avoid conflict.

Question #17
Comment Image Comment Image Comment Image

What is the best approach to handle a hard disk failure on a FortiAnalyzer that supports hardware RAID? (Choose one answer)

  • A. Hot swap the disk.
  • B. There is no need to do anything because the disk will self-recover.
  • C. Shut down FortiAnalyzer and replace the disk.
  • D. Run execute format disk to format and restart the FortiAnalyzer device.

Question #18
Comment Image Comment Image Comment Image

In a Fortinet Security Fabric, what can make an upstream FortiGate create traffic logs associated with sessions initiated on downstream FortiGate devices? (Choose one answer)

  • A. The traffic destination is another FortiGate in the fabric.
  • B. The upstream FortiGate is configured to do NAT.
  • C. Log redundancy is configured in the fabric.
  • D. The downstream device cannot connect to FortiAnalyzer.

Question #19
Comment Image Comment Image Comment Image

You finished registering a FortiGate device. After traffic starts to flow through FortiGate, you notice that only some of the logs expected are being received on FortiAnalyzer.

What could be the reason for the logs not arriving on FortiAnalyzer? (Choose one answer)

  • A. FortiGate was added to the wrong ADOM type.
  • B. This FortiGate model is not fully supported.
  • C. FortiGate does not have logging configured correctly.
  • D. This FortiGate is part of an HA cluster but it is the secondary device.

Question #20
Comment Image Comment Image Comment Image

Refer to the exhibit.

The exhibit shows the creation of a new administrator on FortiAnalyzer.

What are two effects of enabling the choice Match all users on remote server when configuring a new administrator? (Choose two answers)

  • A. It allows user accounts in the LDAP server to use two-factor authentication.
  • B. It creates a wildcard administrator using an LDAP server.
  • C. User Remote-Admin from the LDAP server will be able to log in to FortiAnalyzer at any time.
  • D. Administrators can log in to FortiAnalyzer using their credentials on the remote LDAP server.