NSE5_FAZ-7.0

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)A . A local wildcard administrator account B. A remote LDAP server C. A trusted host profile that restricts access to the LDAP group...

Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?A . To properly correlate logs B. To use real-time forwarding C. To resolve host names D. To improve DNS response timesView AnswerAnswer: A

Refer to the exhibit. What is the purpose of using the Chart Builder feature on FortiAnalyzer?A . In Log View, this feature allows you to build a dataset and chart automatically, based on the filtered search results. B. In Log View, this feature allows you to build a chart and...

What must you configure on FortiAnalyzer to upload a FortiAnalyzer report to a supported external server? (Choose two.)A . SFTP, FTP, or SCP server B. Mail server C. Output profile D. Report schedulingView AnswerAnswer: B,C Explanation: https://docs.fortinet.com/document/fortianalyzer/6.0.2/administration-guide/598322/creating-output-profiles

What purposes does the auto-cache setting on reports serve? (Choose two.)A . To reduce report generation time B. To automatically update the hcache when new logs arrive C. To reduce the log insert lag rate D. To provide diagnostics on report generation timeView AnswerAnswer: A,B Explanation: Reference: https://docs.fortinet.com/document/fortianalyzer/6.0.0/administration-guide/282280/enabling-autocache

What does the disk status Degraded mean for RAID management?A . One or more drives are missing from the FortiAnalyzer unit. The drive is no longer available to the operating system. B. The FortiAnalyzer device is writing to all the hard drives on the device in order to make the...

An administrator has configured the following settings: config system fortiview settings set resolve-ip enable end What is the significance of executing this command?A . Use this command only if the source IP addresses are not resolved on FortiGate. B. It resolves the source and destination IP addresses to a hostname...

Which log type does the FortiAnalyzer indicators of compromise feature use to identify infected hosts?A . Antivirus logs B. Web filter logs C. IPS logs D. Application control logsView AnswerAnswer: B Explanation: Reference: https://help.fortinet.com/fa/faz50hlp/60/6-0-2/Content/FortiAnalyzer_Admin_Guide/3600_FortiView/0200_Using_FortiView/1200_Compromised_hosts_page.htm?TocPath=FortiView%7CUsing%20FortiView%7C_____6

What can the CLI command # diagnose test application oftpd 3 help you to determine?A . What devices and IP addresses are connecting to FortiAnalyzer B . What logs, if any, are reaching FortiAnalyzer C . What ADOMs are enabled and configured D . What devices are registered and unregisteredView...

Refer to the exhibit. Which two statements are true regarding enabling auto-cache on FortiAnalyzer? (Choose two.)A . Report size will be optimized to conserve disk space on FortiAnalyzer. B. Reports will be cached in the memory. C. This feature is automatically enabled for scheduled reports. D. Enabling auto-cache reduces report...