Fortinet NSE5_FAZ-5.4 - FortiAnalyzer 5.4 Specialist Exam

Page:    1 / 5   
Total 25 questions

On FortiAnalyzer, what is a wildcard administrator account?

  • A. An account that permits access to members of a LDAP group
  • B. An account that allows guest access with read-only privileges
  • C. An account that requires two-factor authentication
  • D. An account that validates against any user account on a FortiAuthenticator


Answer : D

Which FortiAnalyzer feature allows you to retrieve the archived logs matching a specific timeframe from another FortiAnalyzer device?

  • A. Log forwarding in aggregation mode
  • B. Log upload
  • C. Log fetching
  • D. Indicators of Compromise


Answer : C

How does FortiAnalyzer retrieve specific log data from the database?

  • A. SQL FROM statement
  • B. SQL GET statement
  • C. SQL SELECT statement
  • D. SQL EXTRACT statement


Answer : C

Logs are being deleted from one of your ADOMs earlier than the configured setting for archiving in your data policy. What is the most likely problem?

  • A. Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device
  • B. CPU resources are too high
  • C. The ADOM disk quota is set too low based on log rates
  • D. The total disk space is insufficient and you need to add other disk


Answer : C

Reference: http://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG-FAZ/1100_Storage/0017_Deleted%20device%20logs.htm

How do you restrict an administrator"™s access to a subset of your organization"™s ADOMs?

  • A. Set the ADOM mode to Advanced
  • B. Configure trusted hosts
  • C. Assign the ADOMs to the administrator"™s account
  • D. Assign the default Super_User administrator profile


Answer : C

Page:    1 / 5   
Total 25 questions