How Many Questions Of NSE5_FAZ-6.2 Free Demo

NEW QUESTION 1
What is the recommended method of expanding disk space on a FortiAnalyzer VM?

• A. From the VM host manager, add an additional virtual disk and use the #execute lvm extend <disk number> command to expand the storage
• B. From the VM host manager, expand the size of the existing virtual disk
• C. From the VM host manager, expand the size of the existing virtual disk and use the # execute format disk command to reformat the disk
• D. From the VM host manager, add an additional virtual disk and rebuild your RAID array

Answer: A

NEW QUESTION 2
What statements are true regarding the "store and upload" log transfer option between FortiAnalyzer and FortiGate? (Choose three.)

• A. All FortiGates can send logs to FortiAnalyzer using the store and upload option.
• B. Only FortiGate models with hard disks can send logs to FortiAnalyzer using the store and upload option.
• C. Both secure communications methods (SSL and IPsec) allow the store and upload option.
• D. Disk logging is enabled on the FortiGate through the CLI only.
• E. Disk logging is enabled by default on the FortiGate.

Answer: BCD

NEW QUESTION 3
On FortiAnalyzer, what is a wildcard administrator account?

• A. An account that permits access to members of an LDAP group
• B. An account that allows guest access with read-only privileges
• C. An account that requires two-factor authentication
• D. An account that validates against any user account on a FortiAuthenticator

Answer: D

NEW QUESTION 4
FortiAnalyzer uses the Optimized Fabric Transfer Protocok (OFTP) over SSL for what purpose?

• A. To upload logs to an SFTP server
• B. To prevent log modification during backup
• C. To send an identical set of logs to a second logging server
• D. To encrypt log communication between devices

Answer: D

NEW QUESTION 5
Which statements are true of Administrative Domains (ADOMs) in FortiAnalyzer? (Choose two.)

• A. ADOMs are enabled by default.
• B. ADOMs constrain other administrator’s access privileges to a subset of devices in the device list.
• C. Once enabled, the Device Manager, FortiView, Event Management, and Reports tab display per ADOM.
• D. All administrators can create ADOMs--not just the admin administrator.

Answer: BC

NEW QUESTION 6
What statements are true regarding disk log quota? (Choose two)

• A. The FortiAnalyzer stops logging once the disk log quota is met.
• B. The FortiAnalyzer automatically sets the disk log quota based on the device.
• C. The FortiAnalyzer can overwrite the oldest logs or stop logging once the disk log quota is met.
• D. The FortiAnalyzer disk log quota is configurable, but has a minimum o 100mb a maximum based on the reserved system space.

Answer: CD

NEW QUESTION 7
You’ve moved a registered logging device out of one ADOM and into a new ADOM. What happens when you rebuild the new ADOM database?

• A. FortiAnalyzer resets the disk quota of the new ADOM to default.
• B. FortiAnalyzer migrates archive logs to the new ADOM.
• C. FortiAnalyzer migrates analytics logs to the new ADOM.
• D. FortiAnalyzer removes logs from the old ADOM.

Answer: C

NEW QUESTION 8
What is the purpose of employing RAID with FortiAnalyzer?

• A. To introduce redundancy to your log data
• B. To provide data separation between ADOMs
• C. To separate analytical and archive data
• D. To back up your logs

Answer: A

NEW QUESTION 9
What purposes does the auto-cache setting on reports serve? (Choose two.)

• A. To reduce report generation time
• B. To automatically update the hcache when new logs arrive
• C. To reduce the log insert lag rate
• D. To provide diagnostics on report generation time

Answer: AB

NEW QUESTION 10
By default, what happens when a log file reaches its maximum file size?

• A. FortiAnalyzer overwrites the log files.
• B. FortiAnalyzer stops logging.
• C. FortiAnalyzer rolls the active log by renaming the file.
• D. FortiAnalyzer forwards logs to syslog.

Answer: C

NEW QUESTION 11
View the exhibit.

What does the data point at 14:35 tell you?

• A. FortiAnalyzer is dropping logs.
• B. FortiAnalyzer is indexing logs faster than logs are being received.
• C. FortiAnalyzer has temporarily stopped receiving logs so older logs’ can be indexed.
• D. The sqlplugind daemon is ahead in indexing by one log.

Answer: D

Explanation:
Logs are received then they are indexed, no logging server in the world can index logs faster than they are received. When FAZ receives raw logs, they are inserted (indexed) by the SQL database and the sqlplugind daemon, this graph shows that FAZ received 3 logs and sqlplugind indexed 4.

NEW QUESTION 12
What can the CLI command # diagnose test application oftpd 3 help you to determine?

• A. What devices and IP addresses are connecting to FortiAnalyzer
• B. What logs, if any, are reaching FortiAnalyzer
• C. What ADOMs are enabled and configured
• D. What devices are registered and unregistered

Answer: A

NEW QUESTION 13
How do you restrict an administrator’s access to a subset of your organization’s ADOMs?

• A. Set the ADOM mode to Advanced
• B. Assign the ADOMs to the administrator’s account
• C. Configure trusted hosts
• D. Assign the default Super_User administrator profile

Answer: B

NEW QUESTION 14
What FortiView tool can you use to automatically build a dataset and chart based on a filtered search result?

• A. Chart Builder
• B. Export to Report Chart
• C. Dataset Library
• D. Custom View

Answer: A

NEW QUESTION 15
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

• A. The total disk space is insufficient and you need to add other disk.
• B. CPU resources are too high.
• C. The ADOM disk quota is set too low based on log rates.
• D. Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.

Answer: C

NEW QUESTION 16
What FortiGate process caches logs when FortiAnalyzer is not reachable?

• A. logfiled
• B. sqlplugind
• C. oftpd
• D. miglogd

Answer: D

NEW QUESTION 17
......