Fortinet FCP_FAZ_AN-7.4 Übungsprüfungen
Zuletzt aktualisiert am 06.05.2025- Prüfungscode: FCP_FAZ_AN-7.4
- Prüfungsname: Fortinet FCP - FortiAnalyzer 7.4 Analyst
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 06.05.2025
If a hard disk on FortiAnalyzer that supports hardware RAID fails, what can be done on FortiAnalyzer?
- A . Shut down FortiAnalyzer and replace the disk.
- B . Run execute format disk to format and restart the FortiAnalyzer device.
- C . No need to do anything because the disk will self-recover.
- D . Hot swap the disk.
Which SQL query is in the correct order to query the database in the FortiAnalyzer?
- A . SELECT devid WHERE ‚user’=’USER1‘ FROM $log GROUP BY devid
- B . FROM $log WHERE ‚user’=’USER1‘ SELECT devid GROUP BY devid
- C . SELECT devid FROM $log WHERE ‚user’=’USER1‘ GROUP BY devid
- D . SELECT devid FROM $log GROUP BY devid WHERE ‚user’=’USER1‘
What is the recommended method of expanding disk space on a FortiAnalyzer VM?
- A . From the VM host manager, add an additional virtual disk and use the #execute lvm extend <disk number> command to expand the storage
- B . From the VM host manager, expand the size of the existing virtual disk
- C . From the VM host manager, expand the size of the existing virtual disk and use the # execute format disk command to reformat the disk
- D . From the VM host manager, add an additional virtual disk and rebuild your RAID array
You need to upgrade your FortiAnalyzer firmware.
What happens to the logs being sent to FortiAnalyzer from FortiGate during the time FortiAnalyzer is temporarily unavailable?
- A . The logfiled process stores logs in offline mode
- B . FortiGate uses the miglogd process to cache the logs
- C . FortiAnalyzer uses log fetching to retrieve the logs when back online
- D . Logs are dropped
What is the main purpose of deploying RAID with FortiAnalyzer?
- A . To back up your logs
- B . To make an identical copy of log data on two separate physical drives
- C . To provide redundancy of your log data
- D . To store data in chunks across multiple drives
Which connector type is enabled by default to be used in playbooks?
- A . Fabric
- B . EMS
- C . Local connector
- D . FortiOS
What are analytics logs on FortiAnalyzer?
- A . Log type Traffic logs.
- B . Logs that roll over when the log file reaches a specific size.
- C . Logs that are indexed and stored in the SQL.
- D . Raw logs that are compressed and saved to a log file.
A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer.
What can you do on FortiAnalyzer to accomplish this?
- A . Click Task Monitor and view the tasks performed by that administrator.
- B . Click Fabric View and view the tasks performed by the rogue administrator.
- C . Click Log View and generate a report for that administrator.
- D . Click FortiView and generate a report for that administrator.
A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer.
What can you do on FortiAnalyzer to accomplish this?
- A . Click Task Monitor and view the tasks performed by that administrator.
- B . Click Fabric View and view the tasks performed by the rogue administrator.
- C . Click Log View and generate a report for that administrator.
- D . Click FortiView and generate a report for that administrator.
Which two statements are true regarding log fetching on FortiAnalyzer? (Choose two.)
- A . Log fetching can be done only on two FortiAnalyzer devices that are running the same firmware version.
- B . Log fetching allows the administrator to fetch analytics logs from another FortiAnalyzer for redundancy.
- C . A FortiAnalyzer device can perform either the fetch server or client role, and it can perform two roles at the same time with the same FortiAnalyzer devices at the other end.
- D . Log fetching allows the administrator to run queries and reports against historical data by retrieving archived logs from one FortiAnalyzer device and sending them to another FortiAnalyzer device.