Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. FCP_FAZ_AD-7.4

Fortinet FCP_FAZ_AD-7.4 Exam
FCP - FortiAnalyzer 7.4 Administrator (Page 4 )

Updated On: 12-Feb-2026
Page 4 of 36
PDF with 178 Questions

An administrator, fortinet, can view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mail server that can be used to send alert emails.

What can be the problem?

  1. ADOM mode is configured with Advanced mode.
  2. A trusted host is configured.
  3. fortinet is assigned the default Standard_User administrative profile.
  4. fortinet is assigned the default Restricted_User administrative profile.

Answer(s): C

Explanation:

The Standard_User profile allows viewing logs and performing some device management tasks but typically does not allow configuring global settings like creating a mail server for alert emails. To create a mail server, the administrator would need to have a profile with higher privileges, such as Super_User or a custom profile with the necessary permissions.



Which two parameters are used to calculate the Total Quota value available on FortiAnalyzer? (Choose two.)

  1. Used storage
  2. Retention policy
  3. Reserved space
  4. Total system storage

Answer(s): C,D

Explanation:

The Total Quota is derived from the total system storage minus any reserved space allocated for system use, such as databases, system files, or reserved space for log retention policies. Used storage and retention policies do not directly impact the calculation of the quota available, though they can influence overall space utilization.



Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate on FortiAnalyzer with any user account in a single LDAP group? (Choose two.)

  1. A local wildcard administrator account
  2. An administrator group
  3. One or more remote LDAP servers
  4. LDAP servers IP addresses added as trusted hosts

Answer(s): A,C

Explanation:

A wildcard administrator account allows any user from the specified LDAP group to authenticate, and the remote LDAP servers must be configured to validate those user credentials. The combination of these settings enables authentication via LDAP for non-local users.



An administrator has moved a FortiGate device from the root ADOM to ADOM1.

Which two statements are true regarding logs? (Choose two.)

  1. Analytics logs will be moved to ADOM1 from the root ADOM automatically.
  2. Archived logs will be moved to ADOM1 from the root ADOM automatically.
  3. Logs will be present in both ADOMs immediately after the move.
  4. Analytics logs will be moved to ADOM1 from the root ADOM after you rebuild the database.

Answer(s): A,D

Explanation:

When a device is moved from one ADOM to another, analytics logs can be moved automatically, but you may need to rebuild the database for the logs to be fully transferred and usable in the new ADOM. Archived logs, however, do not move automatically between ADOMs.



Which statement about the communication between FortiGate high availability (HA) clusters and FortiAnalyzer is true?

  1. If devices were registered to FortiAnalyzer before forming a cluster, you can manually add them together.
  2. FortiAnalyzer distinguishes each cluster member by the IP addresses in log message headers.
  3. If the HA primary device becomes unavailable, you must remove it from the HA cluster list on FortiAnalyzer.
  4. The FortiGate HA cluster must be in active-passive mode in order to avoid conflict.

Answer(s): B

Explanation:

This allows FortiAnalyzer to correctly identify and process logs from different members of the HA cluster.






Post your Comments and Discuss Fortinet FCP_FAZ_AD-7.4 exam prep with other Community members:

Join the FCP_FAZ_AD-7.4 Discussion