Practice Free FCP_FML_AD-7.4 Exam Online Questions
How does FortiMail process SMTP sessions, if no access receive rules are configured?
- A . If the destination IP matches the MAIL FROM domain’s MX record, the email will be relayed.
- B . If the MAIL FROM domain matches the protected domain, the email will be relayed.
- C . If the RCPT TO domain matches the protected domain, the email will be relayed.
- D . If the source IP matches the RCPT TO domain’s MX record, the email will be relayed.
What is the main advantage of identity-based encryption (IBE) compared to traditional public key infrastructure (PKI) encryption?
- A . IBE requires less computational power.
- B . IBE does not require a central certificate authority.
- C . IBE is more suitable for large organizations.
- D . IBE only works with specific email clients.
Which features should be configured to enhance email security in FortiMail? (Choose all that apply)
- A . Session-based filtering
- B . Content-based filtering
- C . Anti-malware scanning
- D . IP whitelisting
Refer to the exhibits which shows a DLP scan profile configuration (DLP Scan Rule 1 and DLP Scan Rule 2) from a FortiMail device.
Which two message types will trigger this DLP scan rule? (Choose two.)
- A . An email that contains credit card numbers in the body, attachment, and subject will trigger this scan rule.
- B . An email sent from [email protected] will trigger this scan rule, even without matching any conditions.
- C . An email message with a subject that contains the term “credit card” will trigger this scan rule.
- D . An email message that contains credit card numbers in the body will trigger this scan rule.
Refer to the exhibit which shows the output of an email transmission using a telnet session.
What are two correct observations about this SMTP session? (Choose two.)
- A . The SMTP envelope addresses are different from the message header addresses.
- B . The "250 Message accepted for delivery" message is part of the message body.
- C . The "Subject" is part of the message header.
- D . The "220 mx.internal.lab ESMTP Smtpd" message is part of the SMTP banner.
DNSBL is a technique used to verify the legitimacy of an email’s sender by checking the domain against a list of known malicious domains.
- A . True
- B . False
What is the benefit of session-based email filtering over traditional end-point scanning?
- A . It reduces the load on email servers.
- B . It allows for larger email attachments.
- C . It scans emails in real-time, preventing potential threats before they enter the network.
- D . It reduces the likelihood of false positives.
What is the purpose of session-based email filtering in FortiMail?
- A . To analyze email headers and footers for authenticity
- B . To monitor email attachment sizes
- C . To scan and filter email traffic in real-time during a session
- D . To archive all incoming and outgoing emails
Refer to the exhibit.
Based on these log entries, which two statements correctly describe the operational status of this FortiMail device? (Choose two.)
- A . FortiMail is experiencing issues delivering the email to the internal.lab MTA.
- B . The FortiMail device is in sever mode.
- C . The FortiMail device is in gateway or transparent mode.
- D . FortiMail is experiencing issues accepting the connection from the external.lab MTA.
Refer to the exhibit, which shows an inbound recipient policy.
After creating the policy shown in the exhibit, an administrator discovers that clients can send unauthenticated emails using SMTP.
What must the administrator do to enforce authentication?
- A . Move this incoming recipient policy to the top of the list.
- B . Configure a matching IP policy with the exclusive flag enabled.
- C . Configure an access delivery rule to enforce authentication.
- D . Configure an access receive rule to verify authentication status.