Fortinet FCP_FAZ_AD-7.4 Übungsprüfungen
Zuletzt aktualisiert am 26.04.2025- Prüfungscode: FCP_FAZ_AD-7.4
- Prüfungsname: FCP - FortiAnalyzer 7.4 Administrator
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 26.04.2025
What is the best approach to handle a hard disk failure on a FortiAnalyzer that supports hardware RAID?
- A . There is no need to do anything because the disk will self-recover.
- B . Run execute format disk to format and restart the FortiAnalyzer device.
- C . Perform a hot swap of the disk.
- D . Shut down FortiAnalyzer and replace the disk.
Refer to the exhibit.
The capture displayed was taken on a FortiAnalyzer.
Why is a single IP address shown as the source for all logs received?
- A . FortiAnalyzer is using the device MAC addresses to differentiate their logs.
- B . The logs belong to devices that are part of a high availability (HA) cluster.
- C . FortiAnalyzer is receiving logs from the root FortiGate of a Security Fabric.
- D . The device sending logs has two VDOMs in the same ADOM.
Which statement about the communication between FortiGate high availability (HA) clusters and FortiAnalyzer is true?
- A . If devices were registered to FortiAnalyzer before forming a cluster, you can manually add them together.
- B . FortiAnalyzer distinguishes each cluster member by the IP addresses in log message headers.
- C . If the HA primary device becomes unavailable, you must remove it from the HA cluster list on FortiAnalyzer.
- D . The FortiGate HA cluster must be in active-passive mode in order to avoid conflict.
What does the disk status Degraded mean for RAID management?
- A . The hard drive is no longer being used by the RAID controller.
- B . One or more drives are missing from the FortiAnalyzer unit.
- C . The device is writing data to the disk to restore the volume to an optimal state.
- D . FortiAnalyzer determined that the parity data in the disk is not valid.
You’ve moved a registered logging device out of one ADOM and into a new ADOM.
What happens when you rebuild the new ADOM database?
- A . FortiAnalyzer resets the disk quota of the new ADOM to default.
- B . FortiAnalyzer migrates archive logs to the new ADOM.
- C . FortiAnalyzer migrates analytics logs to the new ADOM.
- D . FortiAnalyzer removes logs from the old ADOM.
Which two parameters impact the amount of reserved disk space required by FortiAnalyzer? (Choose two.)
- A . Total quota
- B . License type
- C . RAID level
- D . Disk size
You are using RAID with a FortiAnalyzer that supports software RAID, and one of the hard disks on FortiAnalyzer has failed.
What is the recommended method to replace the disk?
- A . Shut down FortiAnalyzer and then replace the disk
- B . Downgrade your RAID level, replace the disk, and then upgrade your RAID level
- C . Clear all RAID alarms and replace the disk while FortiAnalyzer is still running
- D . Perform a hot swap
You finished registering a FortiGate device. After traffic starts to flow through FortiGate, you notice that only some of the logs expected are being received on FortiAnalyzer.
What could be the reason for the logs not arriving on FortiAnalyzer?
- A . FortiGate was added to the wrong ADOM type.
- B . This FortiGate model is not fully supported.
- C . FortiGate does not have logging configured correctly.
- D . This FortiGate is part of an HA cluster but it is the secondary device.
FortiAnalyzer reports are dropping analytical data from 15 days ago, even though the data policy setting for analytics logs is 60 days.
What is the most likely problem?
- A . Quota enforcement is acting on analytical data before a report is complete
- B . Logs are rolling before the report is run
- C . CPU resources are too high
- D . Disk utilization for archive logs is set for 15 days
Which two settings must you configure on FortiAnalyzer to allow non-local administrators to authenticate on FortiAnalyzer with any user account in a single LDAP group? (Choose two.)
- A . A local wildcard administrator account
- B . An administrator group
- C . One or more remote LDAP servers
- D . LDAP servers IP addresses added as trusted hosts