● FCP - FortiAnalyzer 7.4 Administrator Exam Materials

Please note that the exam "FCP - FortiAnalyzer 7.4 Administrator" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 5 - FortiAnalyzer 7.6 Analyst Exam"

The new exam version is available on Brave-Dumps and can be purchased.



Question #81
Comment Image Comment Image Comment Image

What is true about a FortiAnalyzer Fabric? (Choose one answer)

  • A. The supervisor and members cannot be in different time zones.
  • B. The members send their logs to the supervisor.
  • C. Supervisors support HA.
  • D. Members' events can be raised from the supervisor.

Question #82
Comment Image Comment Image Comment Image

Which statement regarding the FortiAnalyzer Fabric is true? (Choose one answer)

  • A. Logging devices can register to the Fabric supervisor or to Fabric members.
  • B. The Fabric supervisor collects logs from the Fabric members.
  • C. Administrators can create new incidents from the Fabric supervisor.
  • D. Fabric members support HA.

Question #83
Comment Image Comment Image Comment Image

Which items must you configure on FortiAnalyzer to send its reports to an external server? (Choose one answer)

  • A. Mail server
  • B. Fabric connector
  • C. Output profile
  • D. Report schedule

Question #84
Comment Image Comment Image Comment Image

Which command can you use to find the IP addresses of the devices sending logs to FortiAnalyzer? (Choose one answer)

  • A. diagnose test application oftpd 3
  • B. diagnose test application miglogd 6
  • C. diagnose dvm adom list
  • D. diagnose debug application oftpd 8

Question #85
Comment Image Comment Image Comment Image

Refer to the exhibit.

Which statement is correct regarding the event displayed? (Choose one answer)

  • A. An incident was created from this event.
  • B. The risk source is isolated.
  • C. The security event risk is considered open.
  • D. The security risk was blocked or dropped.

Question #86
Comment Image Comment Image Comment Image

Which two methods can you use to send event notifications when an event occurs that matches a configured event handler? (Choose two answers)

  • A. Send Alert through Fabric Connectors
  • B. Send SNMP trap
  • C. Send SMS notification
  • D. Send Alert through IM

Question #87
Comment Image Comment Image Comment Image

What is the purpose of using prefilters when configuring event handlers? (Choose one answer)

  • A. They can filter the logs before they are processed by FortiAnalyzer.
  • B. They can limit which logs are checked for matches by the other filters.
  • C. They download new filters to be used in event handlers.
  • D. They are common filters applied simultaneously to all event handlers.

Question #88
Comment Image Comment Image Comment Image

Which statement is correct regarding the event displayed? (Choose one answer)

  • A. The security event risk is considered open.
  • B. An incident was created from this event.
  • C. The security risk was blocked or dropped.
  • D. The risk source is isolated.

Question #89
Comment Image Comment Image Comment Image

The image shows the details of a playbook after it finished running.

What is the status of the playbook? (Choose one answer)

  • A. Upstream_failed
  • B. Running
  • C. Success
  • D. Failed

Question #90
Comment Image Comment Image Comment Image

You are looking for a playbook that was exported by a junior administrator. You perform a search and find the files listed below.

Which file would you choose to perform an import operation? (Choose one answer)

  • A. Exported_playbook.sql
  • B. Exported_playbook.csv
  • C. Exported_playbook.txt
  • D. Exported_playbook.json