Free NSE5_FMG-7.2 Sample Questions — Fortinet NSE 5 - FortiManager 7.2

An administrator runs the reload failure command diagnose test deploymanager reloadconf <deviceid> on FortiManager. What does this command do?

• A. It reloads the policy package from the FortiManager to FortiGate
• B. It installs the latest configuration on the specified FortiGate and updates the revision history database
• C. It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database
• D. It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate

What does a policy package status of Conflict indicate?

• A. The policy configuration has never been imported after a device was registered on FortiManager
• B. The policy package does not have FortiGate as the installation target
• C. The policy package configuration has been changed on both FortiManager and the managed device independently
• D. The policy package reports inconsistencies and conflicts during a Policy Consistency Check

Which two statements about Security Fabric integration with FortiManager are true? (Choose two.)

• A. The Fabric View module enables you to generate the Security Fabric ratings for Security Fabric devices
• B. The Security Fabric settings are part of the device-level settings
• C. The Fabric View module enables you to view the Security Fabric ratings for Security Fabric devices
• D. The Security Fabric license, group name, and password are required for the FortiManager Security Fabric integration

What are two outcomes of ADOM revisions? (Choose two.)

• A. ADOM revisions can save the current state of the whole ADOM
• B. ADOM revisions can save the current state of all policy packages and objects for an ADOM
• C. ADOM revisions can significantly increase the size of the configuration backups
• D. ADOM revisions can create System Checkpoints for the FortiManager configuration

Which two items does an FGFM keepalive message include? (Choose two.)

• A. FortiGate uptime
• B. FortiGate license information
• C. FortiGate configuration checksum
• D. FortiGate IPS version

An administrator enabled workspace mode and now wants to delete an address object that is currently referenced in a firewall policy. Which two results can the administrator expect to happen? (Choose two.)

• A. FortiManager will temporarily change the status of the referenced firewall policy
• B. FortiManager will disable the status of the address object
• C. FortiManager will replace the deleted address object with the none address object in the referenced firewall policy
• D. FortiManager will not allow the administrator to delete a referenced address object until the ADOM is locked

Which two settings are required for FortiManager Management Extension Applications (MEA)? (Choose two.)

• A. You must create an MEA special policy on FortiManager using the super user profile
• B. You must open the ports to the Fortinet registry
• C. When you configure MEA, you must open TCP or UDP port 540
• D. The administrator must have the super user profile

In the event that one of the secondary FortiManager devices fails, which action must be performed to return the FortiManager HA manual mode to a working state?

• A. The FortiManager HA state transition is transparent to administrators and does not require any reconfiguration
• B. Manually promote one of the working secondary devices to the primary role, and reboot the old primary device to remove the peer IP of the failed device
• C. Reconfigure the primary device to remove the peer IP of the failed device
• D. Reboot the failed device to remove its IP from the primary device

You are moving managed FortiGate devices from one ADOM to a new ADOM. Which statement correctly describes the expected result?

• A. The shared device settings will be installed automatically
• B. Any unused objects from a previous ADOM are moved to the new ADOM automatically
• C. The shared policy package will not be moved to the new ADOM
• D. Policy packages will be imported into the new ADOM automatically

An administrator has assigned a global policy package to a new ADOM called ADOM1. What will happen if the administrator tries to create a new policy package in ADOM1?

• A. When a new policy package is created, the administrator must import the global policy package to ADOM1
• B. When the new policy package is created, FortiManager automatically assigns the global policy package to the new policy package
• C. When a new policy package is created, the administrator must assign the global policy package from the global ADOM
• D. When creating a new policy package, the administrator can select the option to assign the global policy package to the new policy package