Practice Free FCP_FAZ_AD-7.4 Exam Online Questions
Question #1
If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?
- A . Hot swap the disk
- B . Replace the disk and rebuild the RAID manually
- C . Take no action if the RAID level supports a failed disk
- D . Shut down FortiAnalyzer and replace the disk
Correct Answer: D
D
Explanation:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD46446#:~:text=On%20FortiAnalyzer%2F FortiManager%20devices%20that,to%20exchanging%20the%20hard%20disk.
If a hard disk on a FortiAnalyzer unit fails, it must be replaced. On FortiAnalyzer devices that support hardware RAID, the hard disk can be replaced while the unit is still running C known as hot swapping. On FortiAnalyzer units with software RAID, the device must be shutdown prior to exchanging the hard disk.
Reference: https://community.fortinet.com/t5/FortiAnalyzer/Technical-Note-How-to-swap-Hard-Disk-on-FortiAnalyzer/ta-p/194997?externalID=FD41397#:~:text=If%20a%20hard%20disk%20on,process%20known%20as%20hot%20swapping
D
Explanation:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD46446#:~:text=On%20FortiAnalyzer%2F FortiManager%20devices%20that,to%20exchanging%20the%20hard%20disk.
If a hard disk on a FortiAnalyzer unit fails, it must be replaced. On FortiAnalyzer devices that support hardware RAID, the hard disk can be replaced while the unit is still running C known as hot swapping. On FortiAnalyzer units with software RAID, the device must be shutdown prior to exchanging the hard disk.
Reference: https://community.fortinet.com/t5/FortiAnalyzer/Technical-Note-How-to-swap-Hard-Disk-on-FortiAnalyzer/ta-p/194997?externalID=FD41397#:~:text=If%20a%20hard%20disk%20on,process%20known%20as%20hot%20swapping
Question #2
What FortiGate process caches logs when FortiAnalyzer is not reachable?
- A . logfiled
- B . sqlplugind
- C . oftpd
- D . miglogd
Correct Answer: D
D
Explanation:
Reference: https://forum.fortinet.com/tm.aspx?m=143106
D
Explanation:
Reference: https://forum.fortinet.com/tm.aspx?m=143106
Question #3
Which two constraints can impact the amount of reserved disk space required by FortiAnalyzer? (Choose two.)
- A . License type
- B . Disk size
- C . Total quota
- D . RAID level
Correct Answer: B, D
B, D
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/368682/disk-space-allocation
B, D
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/368682/disk-space-allocation
Question #4
What are the operating modes of FortiAnalyzer? (Choose two)
- A . Standalone
- B . Manager
- C . Analyzer
- D . Collector
Correct Answer: CD
Question #5
Which two parameters are used to calculate the Total Quota value available on FortiAnalyzer? (Choose two.)
- A . Used storage
- B . Retention policy
- C . Reserved space
- D . Total system storage
Correct Answer: C, D
C, D
Explanation:
The Total Quota is derived from the total system storage minus any reserved space allocated for system use, such as databases, system files, or reserved space for log retention policies. Used storage and retention policies do not directly impact the calculation of the quota available, though they can influence overall space utilization.
C, D
Explanation:
The Total Quota is derived from the total system storage minus any reserved space allocated for system use, such as databases, system files, or reserved space for log retention policies. Used storage and retention policies do not directly impact the calculation of the quota available, though they can influence overall space utilization.
Question #6
What is the purpose of output variables?
- A . To store playbook execution statistics
- B . To use the output of the previous task as the input of the current task
- C . To display details of the connectors used by a playbook
- D . To save all the task settings when a playbook is exported
Correct Answer: B
B
Explanation:
FortiAnalyzer_7.0_Study_Guide-Online.pdf page 242: Output variables allow you to use the output from a preceding task as an input to the current task.
"Output variables allow you to use the output from a preceding task as an input to the current task." FortiAnalyzer_7.0_Study_Guide-Online page 242
B
Explanation:
FortiAnalyzer_7.0_Study_Guide-Online.pdf page 242: Output variables allow you to use the output from a preceding task as an input to the current task.
"Output variables allow you to use the output from a preceding task as an input to the current task." FortiAnalyzer_7.0_Study_Guide-Online page 242
Question #7
What is the main purpose of using an NTP server on FortiAnalyzer and all of its registered devices?
- A . Log correlation
- B . Host name resolution
- C . Log collection
- D . Real-time forwarding
Correct Answer: A
Question #8
On FortiAnalyzer, what is a wildcard administrator account?
- A . An account that permits access to members of an LDAP group
- B . An account that allows guest access with read-only privileges
- C . An account that requires two-factor authentication
- D . An account that validates against any user account on a FortiAuthenticator
Correct Answer: A
A
Explanation:
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-admin-accounts
A
Explanation:
https://docs.fortinet.com/document/fortigate/6.2.0/cookbook/747268/configuring-wildcard-admin-accounts
Question #9
What are offline logs on FortiAnalyzer?
- A . Compressed logs, which are also known as archive logs, are considered to be offline logs.
- B . When you restart FortiAnalyzer. all stored logs are considered to be offline logs.
- C . Logs that are indexed and stored in the SQL database.
- D . Logs that are collected from offline devices after they boot up.
Correct Answer: A
A
Explanation:
Reference: https://help.fortinet.com/fa/faz50hlp/56/5-6-6/Content/FortiAnalyzer_Admin_Guide/0300_Key_concepts/0600_Log_Storage/0400_Archive_analytics_logs.htm
Logs are received and saved in a log file on the FortiAnalyzer disks. Eventually, when the log file reaches a configured size, or at a set schedule, it is rolled over by being renamed. These files (rolled or otherwise) are known as archive logs and are considered offline so they don’t offer immediate analytic support. Combined, they count toward the archive quota and retention limits, and they are deleted based on the ADOM data policy. FortiAnalyzer_7.0_Study_Guide-Online page 140
A
Explanation:
Reference: https://help.fortinet.com/fa/faz50hlp/56/5-6-6/Content/FortiAnalyzer_Admin_Guide/0300_Key_concepts/0600_Log_Storage/0400_Archive_analytics_logs.htm
Logs are received and saved in a log file on the FortiAnalyzer disks. Eventually, when the log file reaches a configured size, or at a set schedule, it is rolled over by being renamed. These files (rolled or otherwise) are known as archive logs and are considered offline so they don’t offer immediate analytic support. Combined, they count toward the archive quota and retention limits, and they are deleted based on the ADOM data policy. FortiAnalyzer_7.0_Study_Guide-Online page 140
Question #10
How do you restrict an administrator’s access to a subset of your organization’s ADOMs?
- A . Set the ADOM mode to Advanced
- B . Assign the ADOMs to the administrator’s account
- C . Configure trusted hosts
- D . Assign the default Super_User administrator profile
Correct Answer: B
B
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/717578/assigning-administrators-to-an-adom
B
Explanation:
https://docs.fortinet.com/document/fortianalyzer/6.2.5/administration-guide/717578/assigning-administrators-to-an-adom