Free Fortinet NSE5_FAZ-7.0 Exam Actual Questions

The questions for NSE5_FAZ-7.0 were last updated On Mar 26, 2024

Question No. 1

Which two methods are the most common methods to control and restrict administrative access on FortiAnalyzer? (Choose two.)

Show Answer Hide Answer
Question No. 2

Which daemon is responsible for enforcing raw log file size?

Show Answer Hide Answer
Correct Answer: A

Question No. 3

An administrator has configured the following settings:

config system global

set log-checksum md5-auth

end

What is the significance of executing this command?

Show Answer Hide Answer
Correct Answer: D

Question No. 4

Which two of the following must you configure on FortiAnalyzer to email a FortiAnalyzer report externally?

(Choose two.)

Show Answer Hide Answer
Correct Answer: A, B

Question No. 5

For which two purposes would you use the command set log checksum? (Choose two.)

Show Answer Hide Answer
Correct Answer: A, B

To prevent logs from being tampered with while in storage, you can add a log checksum using the config

system global command. You can configure FortiAnalyzer to record a log file hash value, timestamp, and

authentication code when the log is rolled and archived and when the log is uploaded (if that feature is

enabled). This can also help against man-in-the-middle only for the transmission from FortiAnalyzer to an

SSH File Transfer Protocol (SFTP) server during log upload.

FortiAnalyzer_7.0_Study_Guide-Online page 149