Practice Free FCP_FAZ_AN-7.4 Exam Online Questions
If the primary FortiAnalyzer in an HA cluster fails, how is the new primary elected?
- A . The configured IP address is checked first.
- B . The active port number is checked first.
- C . The firmware version is checked first.
- D . The configured priority is checked first
FortiAnalyzer uses the Optimized Fabric Transfer Protocok (OFTP) over SSL for what purpose?
- A . To upload logs to an SFTP server
- B . To send an identical set of logs to a second logging server
- C . To encrypt log communication between devices
- D . To prevent log modification during backup
An administrator has moved FortiGate A from the root ADOM to ADOM1. However, the administrator is not able to generate reports for FortiGate A in ADOM1.
What should the administrator do to solve this issue?
- A . Use the execute sql-local rebuild-db command to rebuild all ADOM databases.
- B . Use the execute sql-local rebuild-adom ADOM1 command to rebuild the ADOM database.
- C . Use the execute sql-report run ADOM1 command to run a report.
- D . Use the execute sql-local rebuild-adom root command to rebuild the ADOM database.
Refer to the exhibit.
Which statement is correct regarding the event displayed?
- A . An incident was created from this event.
- B . The security risk was blocked or dropped.
- C . The security event risk is considered open.
- D . The risk source is isolated.
Refer to the exhibit.
Which statement is correct regarding the event displayed?
- A . An incident was created from this event.
- B . The security risk was blocked or dropped.
- C . The security event risk is considered open.
- D . The risk source is isolated.
Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)
- A . Virtual domains.
- B . Administrative access profiles.
- C . Trusted hosts.
- D . Security Fabric.
If a hard disk fails on a FortiAnalyzer that supports software RAID, what should you do to bring the FortiAnalyzer back to functioning normally, without losing data?
- A . Hot swap the disk
- B . Replace the disk and rebuild the RAID manually
- C . Take no action if the RAID level supports a failed disk
- D . Shut down FortiAnalyzer and replace the disk
What are offline logs on FortiAnalyzer?
- A . Logs that are collected from offline devices after they boot up.
- B . Compressed logs, which are also known as archive logs, are considered to be offline logs.
- C . Logs that are indexed and stored in the SQL database.
- D . When you restart FortiAnalyzer. all stored logs are considered to be offline logs.
How can you attach a report to an incident?
- A . From the properties of an existing incident
- B . By editing the settings of the desired report
- C . Saving it in JSON format, and then importing it
- D . By attaching it to an event handler alert
How can you attach a report to an incident?
- A . From the properties of an existing incident
- B . By editing the settings of the desired report
- C . Saving it in JSON format, and then importing it
- D . By attaching it to an event handler alert