Back

Practice Free FCP_FWB_AD-7.4 Exam Online Questions

Question #31

Part of the location service registration process is to link FortiAPs in FortiPresence.

Which two management services can configure the discovered AP registration information from the FortiPresence cloud? (Choose two.)

  • A . AP Manager
  • B . FortiAP Cloud
  • C . FortiSwitch
  • D . FortiGate

Reveal Solution Hide Solution

Correct Answer: BD
Question #32

Review the following configuration:

config waf machine-learning-policy

edit 1

set sample-limit-by-ip 0

next

end

What is the expected result of this configuration setting?

  • A . When machine learning (ML) is in its running phase, FortiWeb will accept a set number of samples from the same source IP address.
  • B . When machine learning (ML) is in its collecting phase, FortiWeb will not accept any samples from any source IP addresses.
  • C . When machine learning (ML) is in its collecting phase, FortiWeb will accept an unlimited number of samples from the same source IP address.
  • D . When machine learning (ML) is in its running phase, FortiWeb will accept an unlimited number of samples from the same source IP address.

Reveal Solution Hide Solution

Correct Answer: C
Question #33

What other consideration must you take into account when configuring Defacement protection?

  • A . Use FortiWeb to block SQL Injections and keep regular backups of the Database
  • B . Configure the FortiGate to perform Anti-Defacement as well
  • C . None. FortiWeb completely secures the site against defacement attacks
  • D . Also incorporate a FortiADC into your network

Reveal Solution Hide Solution

Correct Answer: A
Question #34

What role does FortiWeb play in ensuring PCI DSS compliance?

  • A . PCI specifically requires a WAF
  • B . Provides credit card processing capabilities
  • C . Provide ability to securely process cash transactions
  • D . Provides load balancing between multiple web servers

Reveal Solution Hide Solution

Correct Answer: A
Question #35

What is a common technique to mitigate Cross-Site Scripting (XSS) attacks in web applications?

  • A . Input validation and escaping
  • B . Encryption of user passwords
  • C . Captcha verification for login forms
  • D . SSL/TLS encryption

Reveal Solution Hide Solution

Correct Answer: A
Question #36

Which of the following is a critical system setting that should be configured during FortiWeb deployment?

  • A . Email notifications
  • B . Default web filtering policies
  • C . DNS server settings
  • D . System time synchronization

Reveal Solution Hide Solution

Correct Answer: D
Question #37

Which of the following are common SSL/TLS encryption-related issues that can be encountered during web application deployment? (Select all that apply)

  • A . Expired SSL certificates
  • B . Mixed content warnings
  • C . Weak encryption ciphers
  • D . Insecure session management

Reveal Solution Hide Solution

Correct Answer: ABC