Free Fortinet FCP_FMG_AD-7.6 Exam Braindumps (page: 2)

You want to let multiple administrators work in the same ADOM without creating configuration conflicts.
What is the best and the most effective solution to apply?

  1. Configure RADIUS authentication to assign ADOM roles to each user.
  2. Enable workflow mode, which is the only way to prevent concurrent configuration conflicts.
  3. Assign administrators with JSON API access to the FortiManager.
  4. Activate workspace mode in the ADOM settings.

Answer(s): D

Explanation:

Activating workspace mode in the ADOM settings allows multiple administrators to work concurrently in the same ADOM by isolating their configuration changes in separate workspaces, preventing conflicts and enabling effective collaboration.



Refer to the exhibit.



If the monitored interface for the primary FortiManager device fails, what must you do to maintain high availability (HA)?

  1. The FortiManager HA failover is transparent to administrators and does not require any additional action.
  2. Manually promote one of the working secondary devices to the primary role: and reboot the original primary device to remove the peer IP address of the failed device.
  3. Reconfigure the primary device to remove the peer IP address of the failed device from its configuration.
  4. Check the integrity database of the primary device to force a secondary device to become the new primary with all active interfaces.

Answer(s): A

Explanation:

In a FortiManager HA cluster configured with VRRP failover, the failover process is automatic and transparent to administrators. If the monitored interface on the primary device fails, the secondary device takes over without requiring manual intervention to maintain HA.



Refer to the exhibit.



An administrator has created a firewall address object that is used in multiple policy packages for multiple FortiGate devices in an ADOM.

After the installation operation is performed, which IP/netmask will be installed on Remote-Firewall [VDOM1] for the LAN firewall address object?

  1. 21.21.2.5/255.255.255.255
  2. 172.16.5.20/255.255.255.255
  3. 172.16.5.0/255.255.255.0
  4. 10.10.10.5/255.255.255.255

Answer(s): A

Explanation:

The per-device mapping overrides the global IP/netmask setting for the firewall address object. For the device "Remote-Firewall," the mapped IP/netmask is 21.21.2.5/255.255.255.255, so this value will be installed on Remote-Firewall [VDOM1].



Refer to the exhibits.





An administrator needed to recover all the configurations related to the user, Support. The configurations were saved in configuration revision ID 9.

The administrator reverted the configuration using the Configuration Revision History window and received the CLI output shown in the exhibit.

What can you conclude from the CLI output?

  1. The administrator set the flag to 0 to prevent configuration overrides.
  2. The administrator reinstalled the policy package.
  3. The administrator needs to retrieve the device to correctly detect the FortiGate firmware version.
  4. The administrator installed only the device-level configuration.

Answer(s): C

Explanation:

The CLI output shows the status "dev-db: not modified; conf: in sync; cond: OK; dm: installed," but the firmware version for the device is listed as "[unknown]." This indicates that FortiManager has not properly detected the FortiGate firmware version, likely because the device needs to be retrieved to update its information.



An administrator wants to configure and manage multiple objects in the FortiManager database and give access to other users who work in the same database. To stay in control of the changes made to firewall policies by other team members, the administrator needs a setup where all modifications go through a central check before they can be installed.
How can the administrator create this setup?

  1. Enable the prompt asking the administrator to accept firewall policies changes before saving.
  2. Enable the workspace (for all ADOMs) to control all changes made by any administrator.
  3. Enable device lock and the advanced mode feature in the ADOM.
  4. Enable workflow mode and the ADOM lock feature.

Answer(s): D

Explanation:

Enabling workflow mode along with the ADOM lock feature ensures that all configuration changes go through a centralized review and approval process before installation, allowing controlled and coordinated management of firewall policies by multiple administrators.



Viewing page 2 of 8
Viewing questions 6 - 10 out of 33 questions



Post your Comments and Discuss Fortinet FCP_FMG_AD-7.6 exam prep with other Community members:

FCP_FMG_AD-7.6 Exam Discussions & Posts