March Sale Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

Fortinet NSE5_FCT-7.0 Dumps

Fortinet NSE 5 - FortiClient EMS 7.0 Questions and Answers

Question 1

Refer to the exhibits.

Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

Options:

A.

The administrator must enable remote HTTPS access to EMS.

B.

The administrator must enable FQDN on EMS.

C.

The administrator must authorize FortiGate on FortiAnalyzer.

D.

The administrator must enable SSH access to EMS.

Question 2

An administrator is required to maintain a software inventory on the endpoints. without showing the feature on the FortiClient dashboard What must the administrator do to achieve this requirement?

Options:

A.

The administrator must use default endpoint profile

B.

The administrator must not select the vulnerability scan feature in the deployment package.

C.

The administrator must select the vulnerability scan feature in the deployment package, but disable the feature on the endpoint profile

D.

The administrator must click the hide icon on the vulnerability scan tab

Question 3

An administrator wants to simplify remote access without asking users to provide user credentials.

Which access control method provides this solution"?

Options:

A.

SSL VPN

B.

B. ZTNA full mode

C.

L2TP

D.

ZTNA IP/MAC filtering mode

Question 4

Refer to the exhibit.

Based on the settings shown in the exhibit which statement about FortiClient behavior is true?

Options:

A.

FortiClient quarantines infected files and reviews later, after scanning them.

B.

FortiClient blocks and deletes infected files after scanning them.

C.

FortiClient scans infected files when the user copies files to the Resources folder

D.

FortiClient copies infected files to the Resources folder without scanning them.

Question 5

An administrator installs FortiClient EMS in the enterprise.

Which component is responsible for enforcing protection and checking security posture?

Options:

A.

FortiClient vulnerability scan

B.

FortiClient EMS tags

C.

FortiClient EMS

D.

D. FortiClient

Question 6

Which three features does FortiClient endpoint security include? (Choose three.)

Options:

A.

L2TP

B.

B. IPsec

C.

DLP

D.

D. Vulnerability management

E.

E. Real-time protection

Question 7

Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which application is blocked by the application firewall?

Options:

A.

Twitter

B.

Facebook

C.

Internet Explorer

D.

Firefox

Question 8

What does FortiClient do as a fabric agent? (Choose two.)

Options:

A.

Provides IOC verdicts

B.

C. Automates Responses

C.

Creates dynamic policies

Question 9

Refer to the exhibit.

Based on the settings shown in the exhibit what action will FortiClient take when it detects that a user is trying to download an infected file?

Options:

A.

Blocks the infected files as it is downloading

B.

Quarantines the infected files and logs all access attempts

C.

Sends the infected file to FortiGuard for analysis

D.

Allows the infected file to download without scan

Question 10

Which component or device shares device status information through ZTNA telemetry?

Options:

A.

FortiClient

B.

FortiGate

C.

FortiGate Access Proxy

D.

FortiClient EMS

Question 11

An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users Which FortiGate feature is required m addition to ZTNA?

Options:

A.

FortiGate FSSO

B.

FortiGate certificates

C.

C. FortiGate explicit proxy

D.

FortiGate endpoint control

Question 12

Refer to the exhibits, which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.

An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.

What is the cause of this issue?

Options:

A.

Remote-Client failed the client certificate authentication.

B.

Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.

C.

Remote-Client has not initiated a connection to the ZTNA access proxy.

D.

Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.

Question 13

Refer to the exhibit.

Which shows FortiClient EMS deployment profiles.

When an administrator creates a deployment profile on FortiClient EMS, which statement about the deployment profile is true?

Options:

A.

Deployment-1 will install FortiClient on new AD group endpoints

B.

Deployment-2 will install FortiClient on both the AD group and workgroup

C.

C. Deployment-2 will upgrade FortiClient on both the AD group and workgroup

D.

Deployment-1 will upgrade FortiClient only on the workgroup

Question 14

Refer to the exhibit.

Based on the settings shown in the exhibit, which action will FortiClient take when users try to access ?

Options:

A.

FortiClient will monitor only the user's web access to the Facebook website

B.

FortiClient will block access to Facebook and its subdomains.

C.

FortiClient will prompt a warning message to warn the user before they can access the Facebook website