Exam FCP_FAZ_AN-7.4: FCP – FortiAnalyzer 7.4 Analyst
Exam Number: FCP_FAZ_AN-7.4 | Length of test: 105 mins |
Exam Name: FCP – FortiAnalyzer 7.4 Analyst | Number of questions in the actual exam: 60 |
Format: PDF, VPLUS | Passing Score: 70% |
Download practice test questions
Title | Size | Hits | Download |
---|---|---|---|
Fortinet.Premium.FCP_FAZ_AN-7.4.56q - DEMO | 2.80 MB | 6 | Download |
Fortinet.FCP_FAZ_AN-7.4.by.Nadan.20q | 731.43 KB | 5 | Download |
Some questions:
Q
Which statement describes archive logs on FortiAnalyzer?
A. Logs that are indexed and stored in the SQL database
B. Logs a FortiAnalyzer administrator can access in FortiView
C. Logs compressed and saved in files with the .gz extension
D. Logs previously collected from devices that are offline
Q
Which two actions should an administrator take to vide Compromised Hosts on FortiAnalyzer? (Choose two.)
A. Enable device detection on the FotiGate device that are sending logs to FortiAnalyzer.
B. Enable web filtering in firewall policies on FortiGate devices, and make sure these logs are sent to fortiAnalyzer.
C. Make sure all endpoints are reachable by FortiAnalyzer.
D. Subscribe FortiAnalyzer to FortiGuard to keep its local threat database up to date.
Q
You created a playbook on FortiAnalyzer that uses a FortiOS connector.
When configuring the FortiGate side, which type of trigger must be used so that the actions in an automation stich are available in the FortiOS connector?
A. FortiAnalyzer Event Handler
B. Fabric Connector event
C. FortiOS Event Log
D. Incoming webhook
Q
Which two methods can you use to send notifications when an event occurs that matches a configured event handler? (Choose two.)
A. Send Alert through Fabric Connectors
B. Send SNMP trap
C. Send SMS notification
D. Send Alert through FortiSIEM MEA
……….