Fortinet FCP_FAZ_AD-7.4 Practice Exams
Last updated on Apr 07,2025- Exam Code: FCP_FAZ_AD-7.4
- Exam Name: FCP - FortiAnalyzer 7.4 Administrator
- Certification Provider: Fortinet
- Latest update: Apr 07,2025
Which statement when you are upgrading the firmware on an HA cluster made up of three FortiAnalyzer devices is true?
- A . You can perform the firmware upgrade using only a console connection.
- B . All FortiAnalyzer devices will be upgraded at the same time.
- C . Enabling uninterruptible-upgrade prevents normal operations from being interrupted during the upgrade.
- D . First, upgrade the secondary devices, and then upgrade the primary device.
An administrator has moved a FortiGate device from the root ADOM to ADOM1.
Which two statements are true regarding logs? (Choose two.)
- A . Analytics logs will be moved to ADOM1 from the root ADOM automatically.
- B . Archived logs will be moved to ADOM1 from the root ADOM automatically.
- C . Logs will be present in both ADOMs immediately after the move.
- D . Analytics logs will be moved to ADOM1 from the root ADOM after you rebuild the database.
Refer to the exhibit.
Which image corresponds to the packet capture shown in the exhibit?
A)
B)
C)
D)
- A . Option A
- B . Option B
- C . Option C
- D . Option D
You’ve moved a registered logging device out of one ADOM and into a new ADOM.
What happens when you rebuild the new ADOM database?
- A . FortiAnalyzer resets the disk quota of the new ADOM to default.
- B . FortiAnalyzer migrates archive logs to the new ADOM.
- C . FortiAnalyzer migrates analytics logs to the new ADOM.
- D . FortiAnalyzer removes logs from the old ADOM.
Which two statements regarding FortiAnalyzer log forwarding modes are true? (Choose two.)
- A . Both modes, forwarding and aggregation, support encryption of logs between devices.
- B . In aggregation mode, you can forward logs to syslog and CEF servers.
- C . Forwarding mode forwards logs in real time only to other FortiAnalyzer devices.
- D . Aggregation mode stores logs and content files and uploads them to another FortiAnalyzer device at a scheduled time.
An administrator, fortinet, can view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mail server that can be used to send alert emails.
What can be the problem?
- A . ADOM mode is configured with Advanced mode.
- B . A trusted host is configured.
- C . fortinet is assigned the default Standard_User administrative profile.
- D . fortinet is assigned the default Restricted_User administrative profile.
An administrator has configured the following settings:
What is the purpose of executing these commands?
- A . To record the hash value and authentication code of log files.
- B . To encrypt log transfer between FortiAnalyzer and other devices.
- C . To create the secure channel used by the OFTP process.
- D . To verify the integrity of the log files received.
Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)
- A . A local wildcard administrator account
- B . A remote LDAP server
- C . A trusted host profile that restricts access to the LDAP group
- D . An administrator group
What are offline logs on FortiAnalyzer?
- A . Compressed logs, also known as archive logs
- B . Logs that are indexed and stored in the SQL database
- C . Any logs collected from offline devices after they boot up
- D . Real-time logs that are not yet indexed
Which clause is considered mandatory in SELECT statements used by the FortiAnalyzer to generate reports?
- A . FROM
- B . LIMIT
- C . WHERE
- D . ORDER BY
