Question 21
You are moving managed FortiGate devices from one ADOM to a new ADOM.
Which statement correctly describes the expected result?
A. Policy packages will be imported into the new ADOM automatically.
B. Any pending device settings will be installed automatically.
C. The shared policy package will not be moved to the new ADOM.
D. Any unused objects from a previous ADOM are moved to the new ADOM automatically.
Question 22
Which two statements regarding device management on FortiManager are true? (Choose two.)
A. FortiGate devices in an HA cluster are counted as a single device.
B. FortiGate devices in transparent mode configurations are not counted toward the device count on FortiManager.
C. The maximum number of managed devices for each ADOM is 500.
D. FortiGate devices in an HA cluster that has five VDOMs are counted as five separate devices.
Question 23
An administrator is replacing a failed device on FortiManager by running the following command:
execute device replace sn .
What device name and serial number must the administrator use?
A. The device name of the new device and serial number of the failed device
B. The device name and serial number of the new device
C. The device name and serial number of the failed device
D. The device name of the failed device and serial number of the new device
Question 24
Refer to the exhibit.
Review the Download Import Report.
Why is it failing to import firewall policy ID 1?
A. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
B. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.
C. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
D. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.
Question 25
Which two items does an FGFM keepalive message include? (Choose two.)
A. FortiGate IPS version
B. FortiGate uptime
C. FortiGate configuration checksum
D. FortiGate license information
Question 26
Refer to the exhibit.
Given the configuration shown in the exhibit, what are two results from this configuration? (Choose two.)
A. Two or more administrators can make configuration changes at the same time, in the same ADOM.
B. Concurrent read-write access to an ADOM is disabled.
C. You can validate administrator login attempts through external servers.
D. The same administrator can lock more than one ADOM at the same time.
Question 27
Refer to the exhibit.
What is the purpose of setting ADOM Mode to Advanced?
A. This setting enables the ADOMs feature on FortiManager.
B. This setting allows you to assign a VDOM when offline mode is enabled.
C. This setting disables concurrent ADOM access and adds ADOM locking.
D. This setting allows you to assign a VDOM from a single device to a different ADOM.
Question 28
Refer to the exhibit.
An administrator has created a firewall address object that is used in multiple policy packages for multiple FortiGate devices in an ADOM.
After the installation operation is performed, which IP/netmask will be shown on FortiManager for this firewall address object?
A. The FortiManager replaces the address object to none.
B. 192.168.1.0/24
C. 0.0.0.0/0
D. 10.0.5.0/24
Question 29
Refer to the exhibit.
Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?
A. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.
B. FortiManager ignored the firewall service category General and deleted the duplicate value in its database.
C. FortiManager ignored the firewall service category General but created a new service category in its database.
D. FortiManager ignored the firewall service category General and did not update its database with the value.
Question 30
Refer to the exhibit.
An administrator is about to add the FortiGate device to FortiManager using the discovery process. FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings.
What is the expected result?
A. During discovery, FortiManager sets both the FortiManager NATed IP address and NAT device IP address on FortiGate.
B. During discovery, FortiManager uses only the FortiGate serial number to establish the connection.
C. During discovery, FortiManager sets the FortiManager NATed IP address on FortiGate.
D. During discovery, FortiManager sets the NATed device IP address on FortiGate.
