Fortinet FCP_FAZ_AN-7.4 Exam Questions

Question 6 of 15

Refer to the exhibit.
Exam FCP_FAZ_AN-7.4: Question 6 - Image 1

What can you conclude about these search results? (Choose two.)

They were searched by using text mode.

They can be downloaded to a file.

They are sortable by columns and customizable.

They are not available for analysis in FortiView.

Correct Answer: A, B

Question 7 of 15

What is the purpose of running the command diagnose sql status sqlplugind?

To list the current SQL processes running

To view the current hcache size

To identify the database log insertion status

To display the SQL query connections and hcache status

Correct Answer: D

Question 8 of 15

Refer to the exhibit.
Exam FCP_FAZ_AN-7.4: Question 8 - Image 1

What does the data point at 12:20 indicate?

FortiAnalyzer is using its cache to avoid dropping logs.

The log insert lag time is increasing.

The performance of FortiAnalyzer is below the baseline.

The sqlplugind service is caught up with new logs.

Correct Answer: A

Question 9 of 15

Which statement correctly describes one difference between templates and reports?

Templates can be cloned, but reports cannot be cloned.

Templates are mapped to device groups, while reports are mapped to ADOMs.

Reports support macros, but templates do not.

Reports provide more configuration options than templates.

Correct Answer: B

Question 10 of 15

Which two statements regarding the outbreak detection service are true? (Choose two.)

An additional license is required.

Outbreak alerts are available on the root ADOM only.

New alerts are received by email.

It automatically downloads new event handlers and reports.

Correct Answer: A, D