● FCSS - FortiSASE 24 Administrator Exam Materials
Please note that the exam "FCSS - FortiSASE 24 Administrator Exam" is no longer offered by Fortinet and is not available for booking through Pearson VUE, so we opened it on free view,
It has been replaced by the exam "NSE 7 - FortiSASE 25 Enterprise Administrator Exam"
The new exam version is available on Brave-Dumps and can be purchased.
It has been replaced by the exam "NSE 7 - FortiSASE 25 Enterprise Administrator Exam"
The new exam version is available on Brave-Dumps and can be purchased.
Question #21
Question #22
Which two components are part of onboarding a secure web gateway (SWG) endpoint? (Choose two answers)
- A. Proxy auto-configuration (PAC) file
- B. FortiSASE CA certificate
- C. FortiSASE SSL VPN gateway URL
- D. FortiSASE invitation code
Question #23
Which statement best describes the Digital Experience Monitor (DEM) feature on FortiSASE? (Choose one answer)
- A. It can help IT and security teams ensure consistent security monitoring for remote users.
- B. It can be used to request a detailed analysis of the endpoint from the FortiGuard team.
- C. It requires a separate DEM agent to be downloaded from the FortiSASE portal and installed on the endpoint.
- D. It provides end-to-end network visibility from all the FortiSASE security PoPs to a specific SaaS application.
Question #24
When viewing the daily summary report generated by FortiSASE, the administrator notices that the report contains very little data.
What is a possible explanation for this almost empty report?
(Choose one answer)
- A. Digital experience monitoring is not configured.
- B. There are no security profile groups applied to all policies.
- C. The web filter security profile is not set to Monitor.
- D. Log allowed traffic is set to Security Events for all policies.
Question #25
Which of the following describes the FortiSASE inline-CASB component? (Choose one answer)
- A. It is placed directly in the traffic path between the endpoint and cloud applications.
- B. It uses API to connect to the cloud applications.
- C. It detects data at rest.
- D. It provides visibility for unmanaged locations and devices.
Question #26
Which event log subtype captures FortiSASE SSL VPN user creation? (Choose one answer)
- A. Endpoint Events
- B. Administrator Events
- C. VPN Events
- D. User Events
Question #27
Refer to the exhibits.
Antivirus is installed on a Windows 10 endpoint, but the Windows application firewall is stopping it from running.
What will the endpoint security posture check be?
(Choose one answer)
- A. FortiClient will tag the endpoint as FortiSASE-Non-Compliant.
- B. FortiClient will block the endpoint from getting access to the network.
- C. FortiClient will prompt the user to enable antivirus.
- D. FortiClient telemetry will be disconnected because of failed compliance.
Question #28
Refer to the exhibit.
In the user connection monitor, the FortiSASE administrator notices the username is showing random characters.
Which configuration change must the administrator make to get correct user information?
(Choose one answer)
- A. Turn off log anonymization on FortiSASE.
- B. Upgrade FortiClient to a version supported by FortiSASE.
- C. Configure the username without special characters.
- D. Configure the username without special characters.
Question #29
Refer to the exhibits.
A FortiSASE administrator has configured an antivirus profile in the security profile group and applied it to the internet access policy.
Remote users are still able to download the eicar.com.zip file from https://eicar.org.
Traffic logs show traffic is allowed by the policy.
Which configuration on FortiSASE is allowing users to perform the download?
(Choose one answer)
- A. IPS is disabled in the security profile group.
- B. Force certificate inspection is enabled in the policy.
- C. Web filter is allowing the traffic.
- D. The HTTPS protocol is not enabled in the antivirus profile.
Question #30
How does FortiSASE hide user information when viewing and analyzing logs? (Choose one answer)
- A. By hashing data using Blowfish
- B. By hashing data using salt
- C. By encrypting data using Secure Hash Algorithm 256-bit (SHA-256)
- D. By encrypting data using advanced encryption standard (AES)
When accessing the FortiSASE portal for the first time, an administrator must select data center locations for which three FortiSASE components? (Choose three answers)