Fortinet FCP_FAZ_AN-7.4 Übungsprüfungen
Zuletzt aktualisiert am 06.05.2025- Prüfungscode: FCP_FAZ_AN-7.4
- Prüfungsname: Fortinet FCP - FortiAnalyzer 7.4 Analyst
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 06.05.2025
Which database language does FortiAnalyzer support for the purposes of logging and reporting?
- A . LDAP
- B . SSH
- C . SQL
- D . XML
When performing a log search on a FortiAnalyzer, it is generally recommended to use the Quick Search option.
What is a valid reason for using the Full Search option, instead?
- A . The search items you are looking for are not contained in indexed log fields.
- B . A quick search only searches data received within the last 24 hours.
- C . You want the search to include the FortiAnalyzer’s local logs.
- D . You want the search to include content archive data as well.
Which FortiAnalyzer feature allows you to retrieve the archived logs matching a specific timeframe from another FortiAnalyzer device?
- A . Log fetching
- B . Indicators of Compromise
- C . Log upload
- D . Log forwarding an aggregation mode
What is the purpose of employing RAID with FortiAnalyzer?
- A . To introduce redundancy to your log data
- B . To provide data separation between ADOMs
- C . To separate analytical and archive data
- D . To back up your logs
What must you configure on FortiAnalyzer to upload a FortiAnalyzer report to a supported external server? (Choose two.)
- A . Mail server
- B . SFTP, FTP, or SCP server
- C . Report scheduling
- D . Output profile
Which statement about sending notifications with incident updates is true?
- A . Each connector used can have different notification settings
- B . Each incident can send notification to a single external platform.
- C . You must configure an output profile to send notifications by email.
- D . Notifications can be sent only when an incident is created oi deleted.
Which statement is true regarding Macros on FortiAnalyzer?
- A . Macros are ADOM specific and each ADOM will have unique macros relevant to that ADO
- B . Macros are supported only on the FortiGate ADO
- C . Macros are useful in generating excel log files automatically based on the reports settings.
- D . Macros are predefined templates for reports and cannot be customized.
In Log View, you can use the Chart Builder feature to build a dataset and chart based on the filtered search results. Similarly, which feature you can use for FortiView?
- A . Export to Report Chart
- B . Export to PDF
- C . Export to Chart Builder
- D . Export to Custom Chart
An administrator has moved FortiGate A from the root ADOM to ADOM1. However, the administrator is not able to generate reports for FortiGate A in ADOM1.
What should the administrator do to solve this issue?
- A . Use the execute sql-local rebuild-db command to rebuild all ADOM databases.
- B . Use the execute sql-local rebuild-adom ADOM1 command to rebuild the ADOM database.
- C . Use the execute sql-report run ADOM1 command to run a report.
- D . Use the execute sql-local rebuild-adom root command to rebuild the ADOM database.
What must be configured to be able to send notifications about incident updates?
- A . A playbook using an Incident_Trigger
- B . Output profile
- C . Back-end email server
- D . Fabric connector