- Email support@dumps4free.com
An administrator wants to create a policy on an ADOM that is in backup mode and install it on a FortiGate device in the same ADOM. How can the administrator perform this task?
A. The administrator must use the Policy & Objects section to create a policy first.
B. The administrator must use a FortiManager script.
C. The administrator must disable the FortiManager offline mode first.
D. The administrator must change the ADOM mode to Advanced to bring the FortiManager online.
To create and install a policy on a FortiGate device in an ADOM (Administrative Domain) that is in backup mode, the administrator must use a FortiManager script. This is because backup mode restricts direct configuration changes, and scripts can be used to push specific configuration changes without altering the ADOM mode.
Options A, C, and D are incorrect because:
A requires the ADOM to be in normal or advanced mode to create policies directly in the Policy & Objects section.
C suggests disabling offline mode, which is irrelevant to the backup mode configuration.
D implies changing the ADOM mode, which is unnecessary if using a script to perform the task.
FortiManager References:
Refer to FortiManager 7.4 Administrator Guide: Working with ADOMs and Using Scripts for managing policies in backup mode.
An administrator configures a new OSPF area on FortiManager and has not yet pushed the changes to the managed FortiGate device. In which database will the configuration be saved?
A. Device-level database
B. ADOM-level database
C. Configuration-level database
D. Revision history database
When an administrator configures a new OSPF area on FortiManager but has not yet pushed the changes to the managed FortiGate device, the configuration is saved in theDevice-level database.
Explanation of Options:
A. Device-level database:
This istrue. When changes are made to a device's configuration on FortiManager, they are saved in theDevice-level database. This database stores the configuration for individual managed devices. The configuration changes remain here until they are pushed to the actual FortiGate device.
B. ADOM-level database:
This isfalse. The ADOM-level database holds configurations related to the entire ADOM (Administrative Domain), such as global settings that apply to all devices within the ADOM, rather than configurations specific to individual devices.
C. Configuration-level database:
This isfalse. The term "Configuration-level database" is not typically used in FortiManager terminology. Changes are stored in the device-level database and are applied when pushed to the FortiGate.
D. Revision history database:
This isfalse. The revision history database keeps track of previous versions of configurations after they have been pushed to the FortiGate device. It does not store unsaved or pending configurations that have not yet been applied to the device.
Which API method is used to create objects or overwrite existing ones?
A. Set
B. Add
C. Exec
D. Update
In the context of the FortiManager JSON API, thesetmethod is used tocreate new objectsoroverwrite existing ones. The API allows administrators to manage FortiManager and its associated devices by automating tasks like configuration changes, policy updates, and object creation.
Explanation of Options:
A. Set:
This istrue. Thesetmethod is used to create a new object if it does not exist or overwrite an existing object if it already exists. This method is frequently used in API requests to configure settings and apply changes on FortiManager.
B. Add:
This isfalse. Theaddmethod is used to add new objects without overwriting any existing ones. It is used when you want to create a new entry and ensure it doesn't conflict with or replace an existing object.
C. Exec:
This isfalse. Theexecmethod is used to execute specific actions or commands, rather than creating or modifying objects. This is typically used for actions like running scripts or executing operational commands on FortiManager or FortiGate.
D. Update:
This isfalse. While "update" might seem relevant, FortiManager's API does not specifically use an "update" method for modifying or creating objects. Thesetmethod serves that function by both creating new objects and overwriting existing ones.
What is a characteristic of the FortiManager high availability (HA) feature?
A. When a secondary unit is removed, FortiManager updates the managed devices using TCP port 5199.
B. The primary unit synchronizes all configuration revision with the seconday units.
C. All secondary units must be in the same network as the primary unit.
D. Each cluster member must be upgraded manually, starting with the primary unit.
The characteristic of the FortiManager high availability (HA) feature is that the primary unit synchronizes all configuration revisions with the secondary units. This ensures that all devices in the HA cluster are up-to-date with the same configurations, providing redundancy and failover capabilities.
Options A, C, and D are incorrect because:
Arefers to a specific port number (5199), but FortiManager does not specifically use TCP port 5199 to update managed devices when a secondary unit is removed.
Cis incorrect as secondary units do not necessarily have to be in the same network as the primary unit; they just need to be able to communicate with each other.
Dis incorrect because HA upgrades can be automated and do not require manual upgrading, starting with the primary unit.
FortiManager References:
Refer to FortiManager 7.4 High Availability (HA) Guide: HA Synchronization and Configuration.
Which two items are included in the FortiManager backup? (Choose two.)
A. All devices
B. Firmware images
C. FortiGuard database
D. Flash configuration
FortiManager backups include:
A. All devices— This includes all device configurations managed by FortiManager, such as firewall policies, objects, and other settings.
D. Flash configuration— This consists of local FortiManager configurations stored in flash memory, such as system settings, scripts, and other locally-stored configurations.
Options B and C are incorrect because:
B (Firmware images)are not typically included in a FortiManager backup. Firmware images are usually stored separately and managed through a different process.
C (FortiGuard database)is incorrect as the FortiGuard database, which contains threat intelligence and security signatures, is not part of the standard FortiManager backup.
FortiManager References:
Refer to FortiManager 7.4 Administrator Guide: Backup and Restore Processes.
| Page 1 out of 7 Pages |