Pre-Winter Special - 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: c4sdisc65

Note! NSE5_FAZ-7.0 has been withdrawn. The new exam code is NSE5_FAZ-7.2

NSE5_FAZ-7.0 Practice Exam Questions with Answers Fortinet NSE 5 - FortiAnalyzer 7.0 Certification

Question # 6

Which daemon is responsible for enforcing raw log file size?

A.

logfiled

B.

oftpd

C.

sqlplugind

D.

miglogd

Full Access
Question # 7

You are using RAID with a FortiAnalyzer that supports software RAID, and one of the hard disks on

FortiAnalyzer has failed.

What is the recommended method to replace the disk?

A.

Shut down FortiAnalyzer and then replace the disk

B.

Downgrade your RAID level, replace the disk, and then upgrade your RAID level

C.

Clear all RAID alarms and replace the disk while FortiAnalyzer is still running

D.

Perform a hot swap

Full Access
Question # 8

Which FortiAnalyzer feature allows you to use a proactive approach when managing your network security?

A.

Incidents dashboards

B.

Threat hunting

C.

FortiView Monitor

D.

Outbreak alert services

Full Access
Question # 9

Refer to the exhibit.

NSE5_FAZ-7.0 question answer

Which statement is correct regarding the event displayed?

A.

The security risk was blocked or dropped.

B.

The security event risk is considered open.

C.

An incident was created from this event.

D.

The risk source is isolated.

Full Access
Question # 10

What does the disk status Degraded mean for RAID management?

A.

One or more drives are missing from the FortiAnalyzer unit. The drive is no longer available to the operating system.

B.

The FortiAnalyzer device is writing to all the hard drives on the device in order to make the array fault tolerant.

C.

The FortiAnalyzer device is writing data to a newly added hard drive in order to restore the hard drive to an optimal state.

D.

The hard driveiIs no longer being used by the RAID controller

Full Access
Question # 11

When working with FortiAnalyzer reports, what is the purpose of a dataset?

A.

To provide the layout used for reports

B.

To define the chart type to be used

C.

To retrieve data from the database

D.

To set the data included in templates

Full Access
Question # 12

How does FortiAnalyzer retrieve specific log data from the database?

A.

SQL FROM statement

B.

SQL GET statement

C.

SQL SELECT statement

D.

SQL EXTRACT statement

Full Access
Question # 13

What FortiView tool can you use to automatically build a dataset and chart based on a filtered search result?

A.

Chart Builder

B.

Export to Report Chart

C.

Dataset Library

D.

Custom View

Full Access
Question # 14

If the primary FortiAnalyzer in an HA cluster fails, how is the new primary elected?

A.

The configured IP address is checked first.

B.

The active port number is checked first.

C.

The firmware version is checked first.

D.

The configured priority is checked first

Full Access
Question # 15

Which statement is true regarding Macros on FortiAnalyzer?

A.

Macros are ADOM specific and each ADOM will have unique macros relevant to that ADOM.

B.

Macros are supported only on the FortiGate ADOM.

C.

Macros are useful in generating excel log files automatically based on the reports settings.

D.

Macros are predefined templates for reports and cannot be customized.

Full Access
Question # 16

For which two purposes would you use the commandset log checksum? (Choose two.)

A.

To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server

B.

To prevent log modification or tampering

C.

To encrypt log communications

D.

To send an identical set of logs to a second logging server

Full Access
Question # 17

What can you do on FortiAnalyzer to restrict administrative access from specific locations?

A.

Configure trusted hosts for that administrator.

B.

Enable geo-location services on accessible interface.

C.

Configure two-factor authentication with a remote RADIUS server.

D.

Configure an ADOM for respective location.

Full Access