Free NSE5_FMG-7.0 Exam Braindumps

- (Exam Topic 1)
An administrator wants to delete an address object that is currently referenced in a firewall policy. What can the administrator expect to happen?

1. A. FortiManager will not allow the administrator to delete a referenced address object
2. B. FortiManager will disable the status of the referenced firewall policy
3. C. FortiManager will replace the deleted address object with the none address object in the referencedfirewall policy
4. D. FortiManager will replace the deleted address object with all address object in the referenced firewall policy

Correct Answer: C
Reference:
https://help.fortinet.com/fmgr/50hlp/56/5-6-2/FortiManager_Admin_Guide/1200_Policy and Objects/12

- (Exam Topic 3)
View the following exhibit.

When using Install Config option to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)

1. A. Once initiated, the install process cannot be canceled and changes will be installed on the managed device
2. B. Will not create new revision in the revision history
3. C. Installs device-level changes to FortiGate without launching the Install Wizard
4. D. Provides the option to preview configuration changes prior to installing them

Correct Answer: AC

- (Exam Topic 3)
What does the diagnose dvm check-integrity command do? (Choose two.)

1. A. Internally upgrades existing ADOMs to the same ADON version in order to clean up and correct the ADOM syntax
2. B. Verifies and corrects unregistered, registered, and deleted device states
3. C. Verifies and corrects database schemas in all object tables
4. D. Verifies and corrects duplicate VDOM entries

Correct Answer: BD
* 6.2 Study Guide page 305verify and correct parts of the device manager databases, including:– inconsistent device-to-group and group-to-ADOM memberships– unregistered, registered, and deleted device states– device lock statuses– duplicate VDOM entries

- (Exam Topic 1)
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?

1. A. Trainer is not a part of workflow approval group
2. B. Trainer does not have full rights over this ADOM
3. C. Trainer must close Student’s workflow session before approving the request
4. D. Student, who submitted the workflow session, must first self-approve the request

Correct Answer: A
Reference:
https://help.fortinet.com/fmgr/50hlp/56/5-6-1/FMG-FAZ/0800_ADOMs/1800_Workflow/0600_Workflow s

- (Exam Topic 1)
View the following exhibit.

If both FortiManager and FortiGate are behind the NAT devices, what are the two expected results? (Choose two.)

1. A. FortiGate is discovered by FortiManager through the FortiGate NATed IP address.
2. B. FortiGate can announce itself to FortiManager only if the FortiManager IP address is configured on FortiGate under central management.
3. C. During discovery, the FortiManager NATed IP address is not set by default on FortiGate.
4. D. If the FCFM tunnel is torn down, FortiManager will try to re-establish the FGFM tunnel.

Correct Answer: AC
Fortimanager can discover FortiGate through a NATed FortiGate IP address. If a FortiManager NATed IP address is configured on FortiGate, then FortiGate can announce itself to FortiManager. FortiManager will not attempt to re-establish the FGFM tunnel to the FortiGate NATed IP address, if the FGFM tunnel is interrupted. Just like it was in the NATed FortiManager scenario, the FortiManager NATed IP address in this scenario is not configured under FortiGate central management configuration.