Last Attempt NSE5_FAZ-7.2 Questions

Fortinet NSE 5 - FortiAnalyzer 7.2 Analyst Questions and Answers

Question 37

What happens when a log file saved on FortiAnalyzer disks reaches the size specified in the device log

settings?

The log file is stored as a raw log and is available for analytic support.

The log file rolls over and is archived.

The log file is purged from the database.

The log file is overwritten.

Question 38

Which statements are true of Administrative Domains (ADOMs) in FortiAnalyzer? (Choose two.)

ADOMs are enabled by default.

ADOMs constrain other administrator’s access privileges to a subset of devices in the device list.

Once enabled, the Device Manager, FortiView, Event Management, and Reports tab display per ADOM.

All administrators can create ADOMs--not just the admin administrator.

Question 39

What are offline logs on FortiAnalyzer?

Compressed logs, which are also known as archive logs, are considered to be offline logs.

When you restart FortiAnalyzer. all stored logs are considered to be offline logs.

Logs that are indexed and stored in the SQL database.

Logs that are collected from offline devices after they boot up.

Question 40

Which daemon is responsible for enforcing raw log file size?

logfiled

oftpd

sqlplugind

miglogd