Fortinet FCP_WCS_AD-7.4 Übungsprüfungen
Zuletzt aktualisiert am 26.04.2025- Prüfungscode: FCP_WCS_AD-7.4
- Prüfungsname: FCP - AWS Cloud Security 7.4 Administrator
- Zertifizierungsanbieter: Fortinet
- Zuletzt aktualisiert am: 26.04.2025
Refer to the exhibit.
Which two statements are correct about traffic flow in FortiWeb Cloud? (Choose two.)
- A . The DNS name for the application servers must point to FortiWeb Cloud.
- B . FortiWeb Cloud filters the incoming traffic from users, blocking the OWASP Top 10 attacks, zero-day threats, and other application layer attacks.
- C . FortiWeb Cloud can protect the application servers only if they are all located in the same virtual public cloud (VPC).
- D . Step 2 requires an AWS S3 bucket to be created.
Refer to the exhibit.
You deployed an active-passive FortiGate HA cluster using a CloudFormation template on an existing VPC. Now you want to test active-passive FortiGate HA failover by running a debug so you can see the API calls to change the Elastic and secondary IP addresses.
Which statement is correct about the output of the debug?
- A . The routing table for Fgt2 updated successfully, and port2 will provide internet access to Fgt2.
- B . The Elastic IP is associated with port1 of Fgt2.
- C . IP address 10.0.0.13 is now associated with eni-0b61d8afc0aefb8a2.
- D . The Elastic IP is associated with port2 of Fgt2, and the secondary IP address for port1 and port2 was updated successfully.
Refer to the exhibit.
What two conclusions can you draw from the FortiGate debug output? (Choose two.)
- A . The dynamic address object is automatically updated if the IP changes.
- B . The address object AWS Windows Server Lab can be manually changed on FortiGate.
- C . The SDN connector is correctly configured and authorized.
- D . The AWS user account used for software-defined network (SDN) integration must have full administrative rights.
Which AWS solution allows high-bandwidth hybrid cloud connectivity without using multiple physical connections?
- A . Transit Gateway multicast
- B . Transit VPC with IPSec
- C . Internet Gateway
- D . Transit Gateway Connect
A cloud administrator is tasked with protecting web applications hosted in AWS cloud.
Which three Fortinet cloud offerings can the administrator choose from to accomplish the task? (Choose three.)
- A . AWS WAF
- B . FortiEDR
- C . FortiGate Cloud-Native Firewall (CNF)
- D . Fortinet Managed Rules for AWS WAF
- E . FortiWeb Cloud
Which is the correct traffic flow from an EC2 instance to the internet when using a NAT Gateway and an Internet Gateway?
- A . EC2 instance > Internet Gateway > NAT Gateway > internet
- B . EC2 instance > NAT Gateway > Internet Gateway > internet
- C . EC2 instance > Gateway Load Balancer Endpoint > NAT Gateway > Internet Gateway > internet
- D . Directly from the EC2 instance to the Internet Gateway