New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Fortinet FCP_FCT_AD-7.2 FCP-FortiClient EMS 7.2 Administrator Exam Practice Test

Page: 1 / 6
Total 55 questions

FCP-FortiClient EMS 7.2 Administrator Questions and Answers

Question 1

An administrator must add an authentication server on FortiClient EMS in a different security zone that cannot allow a direct connection.

Which solution can provide secure access between FortiClient EMS and the Active Directory server?

Options:

A.

Configure and deploy a FortiGate device between FortiClient EMS and the Active Directory server.

B.

Configure Active Directory and install FortiClient EMS on the same VM.

C.

Configure a slave FortiClient EMS on a virtual machine.

D.

Configure an Active Directory connector between FortiClient EMS and the Active Directory server.

Question 2

An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate What is the prerequisite to get FortiClient EMS lo connect to FortiGate successfully?

Options:

A.

Import and verify the FortiClient EMS tool CA certificate on FortiGate.

B.

Revoke and update the FortiClient client certificate on EMS.

C.

Import and verify the FortiClient client certificate on FortiGate.

D.

Revoke and update the FortiClient EMS root CA.

Question 3

Refer to the exhibit.

Question # 3

Based on the CLI output from FortiGate. which statement is true?

Options:

A.

FortiGate is configured to pull user groups from FortiClient EMS

B.

FortiGate is configured with local user group

C.

FortiGate is configured to pull user groups from FortiAuthenticator

D.

FortiGate is configured to pull user groups from AD Server.

Question 4

Which statement about FortiClient enterprise management server is true?

Options:

A.

It provides centralized management of FortiGate devices.

B.

lt provides centralized management of multiple endpoints running FortiClient software.

C.

It provides centralized management of FortiClient Android endpoints only.

D.

It provides centralized management of Chromebooks running real-time protection

Question 5

Exhibit.

Question # 5

Based on the logs shown in the exhibit, why did FortiClient EMS tail to install FortiClient on the endpoint?

Options:

A.

The FortiClient antivirus service is not running.

B.

The Windows installer service is not running.

C.

The remote registry service is not running.

D.

The task scheduler service is not running.

Question 6

An administrator configures ZTNA configuration on the FortiGate. Which statement is true about the firewall policy?

Options:

A.

It redirects the client request to the access proxy.

B.

It uses the access proxy.

C.

It defines ZTNA server.

D.

It only uses ZTNA tags to control access for endpoints.

Question 7

Refer to the exhibit.

Question # 7

Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

Options:

A.

Endpoints will be quarantined through EMS

B.

Endpoints will be banned on FortiGate

C.

An email notification will be sent for compromised endpoints

D.

Endpoints will be quarantined through FortiSwitch

Question 8

Which statement about FortiClient comprehensive endpoint protection is true?

Options:

A.

It helps to safeguard systems from email spam

B.

It helps to safeguard systems from data loss.

C.

It helps to safeguard systems from DDoS.

D.

lt helps to safeguard systems from advanced security threats, such as malware.

Question 9

Which two statements are true about the ZTNA rule? (Choose two.)

Options:

A.

It applies security profiles to protect traffic

B.

It applies SNAT to protect traffic.

C.

It defines the access proxy.

D.

It enforces access control.

Question 10

ZTNA Network Topology

Question # 10

Refer to the exhibits, which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.

An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.

What is the cause of this issue?

Options:

A.

Remote-Client has not initiated a connection to the ZTNA access proxy.

B.

Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.

C.

Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.

D.

Remote-Client failed the client certificate authentication.

Question 11

Which component or device shares ZTNA tag information through Security Fabric integration?

Options:

A.

FortiGate

B.

FortiGate Access Proxy

C.

FortiClient

Question 12

Refer to the exhibit.

Question # 12

Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)

Options:

A.

Enable the web filter profile.

B.

Run Calculator application on the endpoint.

C.

Integrate FortiSandbox tor infected file analysis

D.

Patch applications that have vulnerability rated as high or above.

Question 13

In a ForliSandbox integration, what does the remediation option do?

Options:

A.

Deny access to a tile when it sees no results

B.

Alert and notify only

C.

Exclude specified files

D.

Wait for FortiSandbox results before allowing files

Question 14

Refer to the exhibit, which shows the output of the ZTNA traffic log on FortiGate.

Question # 14

What can you conclude from the log message?

Options:

A.

The remote user connection does not match the local-in policy.

B.

The remote user connection does not match the ZTNA rule configuration.

C.

The remote user connection does not match the ZTNA server configuration.

D.

The remote user connection does not match the ZTNA firewall policy.

Question 15

Refer to the exhibits.

Question # 15

Question # 15

Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

Options:

A.

The administrator must enable remote HTTPS access to EMS.

B.

The administrator must enable FQDN on EMS.

C.

The administrator must authorize FortiGate on FortiAnalyzer.

D.

The administrator must enable SSH access to EMS.

Question 16

An administrator installs FortiClient on Windows Server.

What is the default behavior of real-time protection control?

Options:

A.

Real-time protection must update AV signature database

B.

Real-time protection sends malicious files to FortiSandbox when the file is not detected locally

C.

Real-time protection is disabled

D.

Real-time protection must update the signature database from FortiSandbox

Page: 1 / 6
Total 55 questions