● FCP - FortiClient EMS 7.2 Administrator Exam Materials
Please note that the exam "FCP - FortiClient EMS 7.2 Administrator" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam " NSE 6 - FortiClient EMS 7.4 Administrator Exam"
The new exam version is available on Brave-Dumps and can be purchased.
It has been replaced by the exam " NSE 6 - FortiClient EMS 7.4 Administrator Exam"
The new exam version is available on Brave-Dumps and can be purchased.
Question #21
Question #22
Refer to the exhibit.
Based on the settings shown in the exhibit, which statement about FortiClient behaviour is true?.
(Choose one answer)
- A. FortiClient blocks and deletes infected files after scanning them.
- B. FortiClient copies infected files to the Resources folder without scanning them.
- C. FortiClient quarantines infected files and reviews later, after scanning them.
- D. FortiClient scans infected files when the user copies files to the Resources folder.
Question #23
What action does FortiClient anti-exploit detection take when it detects exploits? (Choose one answer)
- A. Deletes the compromised application process
- B. Blocks memory allocation to the compromised application process
- C. Terminates the compromised application process
- D. Patches the compromised application process
Question #24
What is the function of the quick scan option on FortiClient? (Choose one answer)
- A. It scans programs and drivers that are currently running, for threats.
- B. It performs a full system scan including all files, executable files, DLLs, and drivers for threats.
- C. It allows users to select a specific file folder on their local hard disk drive (HDD), to scan for threats.
- D. It scans executable files, DLLs, and drivers that are currently running, for threats.
Question #25
Refer to the exhibit.
Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant?
(Choose two answers)
- A. Enable the web filter profile.
- B. Run Calculator application on the endpoint.
- C. Integrate FortiSandbox tor infected file analysis
- D. Patch applications that have vulnerability rated as high or above.
Question #26
Refer to the exhibit,
Which shows multiple endpoint policies on FortiClient EMS. Which policy is applied to the endpoint in the AD group trainingAD?
(Choose one answer)
- A. The Training policy
- B. Both the Sales and Training policies because their priority is higher than the Default policy
- C. The Default policy because it has the highest priority
- D. The sales policy
Question #27
What are two functions of the ZTNA rule? (Choose two answers)
- A. It redirects the client request to the access proxy.
- B. It applies security profiles to protect traffic.
- C. It defines the access proxy.
- D. It enforces access control.
Question #28
An administrator is required to maintain a software vulnerability on the endpoints, without showing the feature on the FortiClient.
What must the administrator do to achieve this requirement?
(Choose one answer)
- A. Select the vulnerability scan feature in the deployment package, but disable the feature on the endpoint profile
- B. Disable select the vulnerability scan feature in the deployment package
- C. Click the hide icon on the vulnerability scan profile assigned to endpoint
- D. Use the default endpoint profile
Question #29
Refer to the exhibit, which shows the output of the ZTNA traffic log on FortiGate.
What can you conclude from the log message?
(Choose one answer)
- A. The remote user connection does not match the explicit proxy policy.
- B. The remote user connection does not match the ZTNA server configuration.
- C. The remote user connection does not match the ZTNA firewall policy.
- D. The remote user connection does not match the ZTNA rule configuration.
Question #30
Refer to the exhibits,
Which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.
An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.
What is the cause of this issue?
(Choose one answer)
- A. Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.
- B. Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.
- C. Remote-Client failed the client certificate authentication.
- D. Remote-Client has not initiated a connection to the ZTNA access proxy.
An administrator installs FortiClient EMS in the enterprise.
Which component is responsible for enforcing protection and checking security posture? (Choose one answer)