Tag - NSE5_FAZ-6.4 exam

A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer. What can you do on FortiAnalyzer to accomplish this?A . Click FortiView and generate a report for that administrator.B . Click Task Monitor and view the...

If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?A . Hot swap the diskB . Replace the disk and rebuild the RAID manuallyC . Take no action if the RAID level supports...

Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?A . To properly correlate logsB . To use real-time forwardingC . To resolve host namesD . To improve DNS response timesView AnswerAnswer: A

What statements are true regarding the "store and upload" log transfer option between FortiAnalyzer and FortiGate? (Choose three.)A . All FortiGates can send logs to FortiAnalyzer using the store and upload option.B . Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.C...

Refer to the exhibit. The exhibit shows “remoteservergroup” is an authentication server group with LDAP and RADIUS servers. Which two statements express the significance of enabling “Match all users on remote server” when configuring a new administrator? (Choose two.)A . It creates a wildcard administrator using LDAP and RADIUS servers.B...

For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:A . Use DNSB . Use host name resolutionC . Use real-time forwardingD . Use an NTP serverView AnswerAnswer: D

After you have moved a registered logging device out of one ADOM and into a new ADOM, what is the purpose of running the following CLI command? execute sql-local rebuild-adom <new-ADOM-name>A . To reset the disk quota enforcement to defaultB . To remove the analytics logs of the device from...

What statements are true regarding FortiAnalyzer 's treatment of high availability (HA) dusters? (Choose two)A . FortiAnalyzer distinguishes different devices by their serial number.B . FortiAnalyzer receives logs from d devices in a duster.C . FortiAnalyzer receives bgs only from the primary device in the cluster.D . FortiAnalyzer only needs...

In FortiAnalyzer’s FormView, source and destination IP addresses from FortiGate devices are not resolving to a hostname. How can you resolve the source and destination IPs, without introducing any additional performance impact to FortiAnalyzer?A . Configure local DNS servers on FortiAnalyzerB . Resolve IPs on FortiGateC . Configure # set...

Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate to FortiAnalyzer with any user account in a single LDAP group? (Choose two.)A . A local wildcard administrator accountB . A remote LDAP serverC . A trusted host profile that restricts access to the LDAP groupD...