← Back to exam page

NSE5_FAZ-7.0 Fortinet NSE 5 - FortiAnalyzer 7.0

Loading demo links...

Showing 4–6 of 10 questions

Question 4

Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)

Select all that apply, then click Submit answer.

  • Must configure the FortiAnalyzer end of the tunnel only--the FortiGate end is auto-negotiated.

  • Must establish an IPsec tunnel ID and pre-shared key.

  • IPsec cannot be enabled if SSL is enabled as well.

  • IPsec is only enabled through the CLI on FortiAnalyzer.
Question 5

Which two actions should an administrator take to view Compromised Hosts on FortiAnalyzer? (Choose two.)

Select all that apply, then click Submit answer.

  • Enable web filtering in firewall policies on FortiGate devices, and make sure these logs are sent to FortiAnalyzer.

  • Make sure all endpoints are reachable by FortiAnalyzer.

  • Enable device detection on an interface on the FortiGate devices that are connected to the FortiAnalyzer device.

  • Subscribe FortiAnalyzer to FortiGuard to keep its local threat database up to date.
Question 6

Why should you use an NTP server on FortiAnalyzer and all registered devices that log into FortiAnalyzer?

Select an option, then click Submit answer.

  • To properly correlate logs

  • To use real-time forwarding

  • To resolve host names

  • To improve DNS response times