What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?

Refer to the exhibit. There is only one administrator account configured on FortiWeb . What must an administrator do to restrict any brute force attacks that attempt to gain access to the FortiWeb management GUI?A . Delete the built-in administrator user and create a new one. B. Configure IPv4 Trusted...

September 19, 2022 No Comments READ MORE +

What key factor must be considered when setting brute force rate limiting and blocking?

What key factor must be considered when setting brute force rate limiting and blocking?A . A single client contacting multiple resources B. Multiple clients sharing a single Internet connection C. Multiple clients from geographically diverse locations D. Multiple clients connecting to multiple resourcesView AnswerAnswer: B Explanation: https://training.fortinet.com/course/view.php?id=3363 What is one...

September 17, 2022 No Comments READ MORE +

Based on the configuration, what would happen if this FortiWeb were to lose power?

Refer to the exhibit. Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)A . Traffic that passes between port5 and port6 will be inspected. B. Traffic will be interrupted between port3 and port4. C. All traffic will be interrupted. D. Traffic will pass...

September 16, 2022 No Comments READ MORE +

What role does FortiWeb play in ensuring PCI DSS compliance?

What role does FortiWeb play in ensuring PCI DSS compliance?A . It provides the ability to securely process cash transactions. B. It provides the required SQL server protection. C. It provides the WAF required by PCI. D. It provides credit card processing capabilities.View AnswerAnswer: C

September 15, 2022 No Comments READ MORE +

When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)A . 403 B. 302 C. 301 D. 404View AnswerAnswer: B, C Explanation: Reference: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/302

September 14, 2022 No Comments READ MORE +

Which algorithm is used to build mathematical models for bot detection?

Which algorithm is used to build mathematical models for bot detection?A . HCM B. SVN C. SVM D. HMMView AnswerAnswer: C Explanation: FortiWeb uses SVM (Support Vector Machine) algorithm to build up the bot detection model Reference: https://docs.fortinet.com/document/fortiweb/6.3.7/administration-guide/193258/machine-learning

September 14, 2022 No Comments READ MORE +

What must you do with your FortiWeb logs to ensure PCI DSS compliance?

What must you do with your FortiWeb logs to ensure PCI DSS compliance?A . Store in an off-site location B. Erase them every two weeks C. Enable masking of sensitive data D. Compress them into a .zip file formatView AnswerAnswer: C Explanation: Reference: https://docplayer.net/8466775-Fortiweb-web-application-firewall-ensuring-compliance-for-pci-dss-requirement-6-6-solution-guide.html

September 12, 2022 No Comments READ MORE +

Which two statements about running a vulnerability scan are true? (Choose two.)

Which two statements about running a vulnerability scan are true? (Choose two.)A . You should run the vulnerability scan during a maintenance window. B. You should run the vulnerability scan in a test environment. C. Vulnerability scanning increases the load on FortiWeb, so it should be avoided. D. You should...

September 12, 2022 No Comments READ MORE +

True transparent proxy mode is best suited for use in which type of environment?

True transparent proxy mode is best suited for use in which type of environment?A . New networks where infrastructure is not yet defined B. Flexible environments where you can easily change the IP addressing scheme C. Small office to home office environments D. Environments where you cannot change the IP...

September 12, 2022 No Comments READ MORE +

Which two Layer 7 switch methods does FortiWeb also offer?

FortiWeb offers the same load balancing algorithms as FortiGate. Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)A . Round robin B. HTTP session-based round robin C. HTTP user-based round robin D. HTTP content routesView AnswerAnswer: A, D Explanation: Reference: https://docs.fortinet.com/document/fortiweb/6.3.0/administration-guide/399384/defining-your-web-servers http://fortinet.globalgate.com.ar/pdfs/FortiWeb/FortiWeb_DS.pdf

September 12, 2022 No Comments READ MORE +