● NSE 5 - FortiSwitch 7.2 Administrator Exam Materials
Please note that the exam "NSE 5 - FortiSwitch 7.2 Administrator" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiSwitch 7.6 Administrator t"
The new exam version is available on Brave-Dumps and can be purchased.
It has been replaced by the exam "NSE 5 - FortiSwitch 7.6 Administrator t"
The new exam version is available on Brave-Dumps and can be purchased.
Question #1
Question #2
Refer to the exhibit.
Core-1 and Access-1 are managed and authorized by FortiGate-1, which uses port4 as the FortLink interface. After FortiGate authorizes and manages Core-2, port1 status becomes STP discarding.
Why is port1 in the discarding state?
(Choose one answer)
- A. port1 on Core-2 is discarding only management traffic.
- B. Core-1 and Core-2 do not have MCLAG configuration.
- C. Access-1 is the root bridge and can only have one root port.
- D. Core-2 has the lowest bridge priority.
Question #3
Which two statements about the FortiLink authorization process are true? (Choose two answers)
- A. The administrator must manually pre-authorize FortiGate on FortiSwitch by adding the FortiGate serial number.
- B. FortiSwitch requires a reboot to complete the authorization process.
- C. Fortiink frame is sent by FortiGate to FortiSwitch to complete the authorization.
- D. FortiLink authorization sets the FortiSwitch management mode to FortiLink.
Question #4
Refer to the exhibits.
Traffic arriving on port2 on FortiSwitch is tagged with VLAN ID 10 and destined for PC1 connected on port1. PC1 expects to receive traffic untagged from port1 on FortiSwitch.
Which two configurations can you perform on FortiSwitch to ensure PC1 receives untagged traffic on port1?
(Choose two answers)
- A. Add the MAC address of PC1 as a member of VLAN 10.
- B. Add VLAN ID 10 as a member of the untagged VLANs on port1
- C. Remove VLAN 10 from the allowed VLANs and add it to untagged VLANs on port1
- D. Enable Private VLAN on VLAN 10 and add VLAN 20 as an isolated VLAN.
Question #5
Refer to the exhibit.
The profile shown in the exhibit is assigned to a group of managed FortiSwitch ports, and these ports are connected to endpoints which are powered by PoE.
Which configuration action can you perform on the LLDP profile to cause these endpoints to exchange PoE information and negotiate power with the managed FortiSwitch?
(Choose one answer)
- A. Create new a LLDP-MED application type to define the PoE parameters.
- B. Assign a new LDP profile to handle different LLDP-MED TLVs.
- C. Define an LLDP-MED location ID to use standard protocols for power.
- D. Add power management as part of LLDP-MED TLVs to advertise
Question #6
Refer to the exhibit.
Two routes are not installed in the forwarding information base (FIB) as shown in the exhibit.
Which two statements about these two route entries are true?
(Choose two answers)
- A. These two routes have a higher administrative distance value available to the destination networks.
- B. These two routes will be used as load-balancing routes.
- C. These two routes will become primary, if the best routes are removed.
- D. These two routes are available in the hardware routing table.
Question #7
Which statement about 802.1X security profiles using MAC-based authentication mode is true? (Choose one answer)
- A. FortiSwitch allows connectivity to all hosts connected to a port, if one host is authenticated.
- B. FortiSwitch can grant each device a different access level based on the credentials provided.
- C. FortiSwitch performs faster when using this security mode on the ports.
- D. FortiSwitch must communicate with the RADIUS server to authenticate devices.
Question #8
Which Ethernet frame can create Layer 2 flooding due to all bytes on the destination MAC address being set to all FF? (Choose one answer)
- A. The broadcast Ethernet frame
- B. The unicast Ethernet frame
- C. The multicast Ethernet frame
- D. The anycast Ethernet frame
Question #9
Which is a requirement to enable SNMP v2c on a managed FortiSwitch? (Choose one answer)
- A. Create a SNMP user to use for authentication and encryption.
- B. Specify an SNMP host to send traps to.
- C. Enable an SNMP v3 to handle traps messages with SNMP hosts.
- D. Configure SNMP agent and communities.
Question #10
Which statement about using MAC, IP, and protocol-based VLANs on FortiSwitch is true? (Choose one answer)
- A. It provides benefits that can be obtained when using 802.1X authentication.
- B. It is a scalable and secure solution in comparison to other Layer 2 security measures.
- C. FortiSwitch uses only the Ethernet type to assign traffic to VLANs.
- D. Endpoints are required to use the same FortiSwitch port to remain members of the VLAN
Refer to the diagnostic output:
Two entries in the exhibit show that the same MAC address has been used in two different VLANs.
Which MAC address is shown in the above output? (Choose one answer)