Fortinet FCP_FMG_AD-7.4テスト参考書 & FCP_FMG_AD-7.4復習内容一つには、当社の最も先進的なオペレーションシステムであり、最速の配信速度を保証でき、お客様の個人情報は弊社のオペレーションシステムによって自動的に暗号化されます。また、FCP_FMG_AD-7.4の実際の試験のオンラインアプリバージョンを使用すると、あらゆる種類の電子デバイスに関するトレーニング資料の質問を気軽に練習できます。さらに、FCP_FMG_AD-7.4試験問題の助けを借りて、お客様の合格率は98%〜100%に達しました。近い将来、あなたの学習パートナーになることを楽しみにしています。 Fortinet FCP - FortiManager 7.4 Administrator 認定 FCP_FMG_AD-7.4 試験問題 (Q27-Q32):質問 # 27
Refer to the exhibit.
Given the configuration shown in the exhibit, which two conclusions can you draw from the installation targets in the Install On column? (Choose two.)
A. Policy seq.# 2 will not be installed on the Local-FortiGate root VDOM because there is no root VDOM in the Installation Target
B. Policy seq.# 1 will be installed on the ISFW device root[NAT] and Student[NAT] VDOMs only.
C. Policy seq.# 3 will be skipped because no installation targets are specified.
D. Policy seq.S will be installed on all managed devices and VDOMs that are listed under Installation Targets
正解:B、D
解説:
* Option A: Policy seq.S will be installed on all managed devices and VDOMs that are listed under Installation Targets.This is correct. The "Install On" column indicates that the policy is targeted for installation on all listed managed devices and VDOMs under Installation Targets.
* Option D: Policy seq.# 1 will be installed on the ISFW device root[NAT] and Student[NAT] VDOMs only.This is correct. Policy sequence #1 specifies that it will be installed only on the ISFW device and the VDOMs 'root[NAT]' and 'Student[NAT]' as indicated by the "Install On" column.
Explanation of Incorrect Options:
* Option B: Policy seq.# 3 will be skipped because no installation targets are specifiedis incorrect because it is clearly listed under "Installation Targets," which means it will be installed according to the specified configuration.
* Option C: Policy seq.# 2 will not be installed on the Local-FortiGate root VDOM because there is no root VDOM in the Installation Targetis incorrect as the exhibit does not show any specific exclusion for seq.# 2 on the Local-FortiGate root VDOM.
FortiManager References:
* Refer to the FortiManager Administration Guide sections on "Policy Packages" and "Policy Installation Targets" for more details.
質問 # 28
Exhibit.
An administrator would like to create three ADOMs on FortiManager with different access levels based on departments. What two conclusions can you draw from the design shown in the exhibit? (Choose two.)
A. Policies and objects databases can be shared between the Financial and HR ADOMs.
B. The FortiManager administrator must set the ADOM device mode to Advanced
C. The administrator must configure FortiManager in workspace normal mode.
D. An administrator with the super user profile can access all theVDOMs.
正解:B、D
質問 # 29
Exhibit.
What is true about the objects highlighted in the image?
A. They are available across all ADOMs by default.
B. They cannot be created in the global database ADOM.
C. They can be used as variables in scripts.
D. They can be set to optional or required.
正解:C
解説:
The objects highlighted in the image (DMZ_SUBNET, ISP1_SUBNET, LAN_SUBNET) aremetadata variables.
* C.They can be used as variables in scripts.
* These metadata variables are placeholders that can be used in FortiManager scripts to dynamically insert specific values, enabling script flexibility and scalability across multiple devices or ADOMs.
Options A, B, and D are incorrect because:
* Asuggests optional or required settings, which do not apply to metadata variables.
* Bimplies they are available across all ADOMs by default, which is not always the case.
* Dstates they cannot be created in the global database ADOM, but metadata variables are typically managed within ADOMs and can be utilized globally based on specific configurations.
FortiManager References:
* Refer to FortiManager 7.4 Administrator Guide: Using Metadata Variables and Script Management.
質問 # 30
Which API method is used to create objects or overwrite existing ones?
A. Add
B. Update
C. Exec
D. Set
正解:D
質問 # 31
An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.
What can prevent an admin account that has Super_User rights over the device from approving a workflow session?
A. Trainer must close Student's workflow session before approving the request.
B. Trainer must first create their own workflow session to approve student session.
C. Trainer does not have full rights over this ADOM.
D. Trainer is not a part of workflow approval group.
正解:D
解説:
An administrator must be part of an approval group, and have rights over the ADOM in which the session was created.
