Fortinet FCSS_EFW_AD-7.4 Übungsprüfungen
Zuletzt aktualisiert am 28.08.2025- Prüfungscode: FCSS_EFW_AD-7.4
- Prüfungsname: FCSS - Enterprise Firewall 7.4 Administrator
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 28.08.2025
Which two statements about the Security Fabric are true? (Choose two.)
- A . Only the root FortiGate collects network information and forwards it to FortiAnalyzer.
- B . Branch FortiGate devices must be configured first.
- C . FortiGate uses FortiTelemetry protocol to communicate with FortiAnalyzer.
- D . All FortiGate devices in the Security Fabric must have bidirectional FortiTelemetry connectivity.
Refer to exhibit, which contains the output of a BGP debug command.
Which statement explains why the state of the 10.200.3.1 peer is Connect?
- A . The local router has received the BGP prefixes from the remote peer.
- B . The TCP session to 10.200.3.1 has not completed the three-way handshake.
- C . The local router is receiving BGP keepalives from the remote peer, but the local peer has not received the OpenConfirm yet.
- D . The local router is receiving the BGP keepalives from the peer, but it has not received a BGP prefix yet.
View the partial crashlog output, and then answer the question below.
# diagnose debug crashlog read
2017-04-20 16:23:10 <00114> IPS enter fail open mode: engines=21 socketsize=123425682
2017-04-20 16:23:10 sessionact=pass
2017-04-20 16:24:09 <00114> IPS exit fail open mode
Which of the following statements are true regarding this FortiGate’s fail-open configuration? (Choose two.)
- A . FortiGate was dropping traffic while fail-open mode was active.
- B . Fail-open is enabled in FortiGate’s global IPS configuration.
- C . Fail-open is disabled in FortiGate’s global IPS configuration.
- D . FortiGate was passing traffic while fail-open mode was active.
View the exhibit, which contains the output of a debug command, and then answer the question below.
Which one of the following statements about this FortiGate is correct?
- A . It is currently in system conserve mode because of high CPU usage.
- B . It is currently in proxy conserve mode because of high memory usage.
- C . It is currently in memory conserve mode because of high memory usage.
- D . It is currently in extreme conserve mode because of high memory usage.
What is an OSPF area border router?
- A . A router with interfaces in multiple OSPF areas.
- B . A router with all its interfaces in the backbone area.
- C . A router that is redistributing connected subnets into the OSPF network.
- D . A router that is redistributing non-OSPF routes into the OSPF network.
Refer to the exhibit, which shows the device and policy layers for FortiGate key operations.
How can the administrator restore a previous FortiGate configuration, which had more policies than the current one, without the layer synchronization between the device and policy layers on FortiManager?
- A . Locate the configuration ID in the FortiGate revision history, click revert, install the device settings, and import policies to sync the policy package.
- B . Use the global ADOM to access the previous configurations and install policies on ADOM devices to synchronize all layers.
- C . Find the configuration file by date and time in the provisioning templates, then reinstall the policy package to apply the configuration changes.
- D . Retrieve the configuration, import system templates, and reinstall the policy package on FortiGate.
Which two statements about bulk configuration changes using FortiManager CLI scripts are correct? (Choose two.)
- A . When executed on the Policy Package, ADOM database, changes are applied directly to the managed FortiGate.
- B . When executed on the Device Database, you must use the installation wizard to apply the changes to the managed FortiGate
- C . When executed on the All FortiGate in ADOM, changes are automatically installed without creating a new revision history.
- D . When executed on the Remote FortiGate directly, administrators do not have the option to review the changes prior to installation.
What is the purpose of an internal segmentation firewall (ISFW)?
- A . It inspects incoming traffic to protect services in the corporate DMZ.
- B . It is the first line of defense at the network perimeter.
- C . It splits the network into multiple security segments to minimize the impact of breaches.
- D . It is an all-in-one security appliance that is placed at remote sites to extend the enterprise network.
A FortiGate device has the following LDAP configuration:
The LDAP user student cannot authenticate.
The exhibit shows the output of the authentication real time debug while testing the student account:
Based on the above output, what FortiGate LDAP settings must the administer check? (Choose two.)
- A . cnid.
- B . username.
- C . password.
- D . dn.
What global configuration setting changes the behavior for content-inspected traffic while FortiGate is in system conserve mode?
- A . av-failopen
- B . mem-failopen
- C . utm-failopen
- D . ips-failopen