Practice Free FCP_FAZ_AN-7.4 Exam Online Questions
What allows one task to use the output of a previous task as its input?
- A . Trigger variables
- B . Output variables
- C . Exported tasks
- D . Trigger variables
Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)
- A . Virtual domains.
- B . Administrative access profiles.
- C . Trusted hosts.
- D . Security Fabric.
Which statement describes online logs on FortiAnalyzer?
- A . Logs that are saved to disk, compressed, and available in FortiView
- B . Logs that reached a specific size and were rolled over
- C . Logs that can be viewed using Log Browse
- D . Logs that can be used to create reports
Which tabs do not appear when FortiAnalyzer is operating in Collector mode?
- A . Event Management
- B . Device Manger
- C . Reporting
- D . FortiView
Refer to the exhibit.
Which statement is correct regarding the event displayed?
- A . An incident was created from this event.
- B . The security risk was blocked or dropped.
- C . The security event risk is considered open.
- D . The risk source is isolated.
What happens when a log file saved on FortiAnalyzer disks reaches the size specified in the device log settings?
- A . The log file is overwritten.
- B . The log file is purged from the database.
- C . The log file is stored as a raw log and is available for analytic support.
- D . The log file rolls over and is archived.
Which two items are downloaded automatically by the Outbreak Detection Service? (Choose two.)
- A . Incident template
- B . Customized playbook
- C . Event Handler
- D . Report Template
Refer to the exhibit.
The image displays the configuration of a FortiAnalyzer the administrator wants to join to an existing HA cluster.
What can you conclude from the configuration displayed?
- A . This FortiAnalyzer will join to the existing HA cluster as the primary.
- B . This FortiAnalyzer is configured to receive logs in its port1.
- C . This FortiAnalyzer will trigger a failover after losing communication with its peers for 10 seconds.
- D . After joining to the cluster, this FortiAnalyzer will keep an updated log database.
Which statement about the FortiSOAR management extension is correct?
- A . It requires a FortiManager configured to manage FortiGate
- B . It requires a dedicated FortiSOAR device or VM.
- C . It does not include a limited trial by default.
- D . It runs as a docker container on FortiAnalyzer
How are logs forwarded when FortiAnalyzer is using aggregation mode?
- A . Logs are forwarded as they are received and content files are uploaded at a scheduled time.
- B . Logs and content files are stored and uploaded at a scheduled time.
- C . Logs are forwarded as they are received.
- D . Logs and content files are forwarded as they are received.