Latest Certified Success Dumps Download

CISCO, MICROSOFT, COMPTIA, HP, IBM, ORACLE, VMWARE
NSE5 Examination questions (September)

Achieve New Updated (September) Fortinet NSE5 Examination questions Topic 1, Volume A part 05

September 25, 2015

Ensurepass

QUESTION 41  (Topic 1)

 

SSL content inspection is enabled on the FortiGate unit. Which of the following steps is required to prevent a user from being presented with a web browser warning when accessing an SSL-encrypted website?

 

A.

The root certificate of the FortiGate SSL proxy must be imported into the local certificate store on the user’s workstation.

B.

Disable the strict server certificate check in the web browser under Internet Options.

C.

Enable transparent proxy mode on the FortiGate unit.

D.

Enable NTLM authentication on the FortiGate unit. NTLM authentication suppresses the certificate warning messages in the web browser.

 

Answer: A

 

 

QUESTION 42  (Topic 1)

 

When backing up the configuration file on a FortiGate unit, the contents can be encrypted

 

 

 

 

by enabling the encrypt option and supplying a password.

 

If the password is forgotten, the configuration file can still be restored using which of the following methods?

 

A.

Selecting the recover password option during the restore process.

B.

Having the password emailed to the administrative user by selecting the Forgot Password option.

C.

Sending the configuration file to Fortinet Support for decryption.

D.

If the password is forgotten, there is no way to use the file.

 

Answer: D

 

 

QUESTION 43  (Topic 1)

 

Which of the following is true regarding Switch Port Mode?

 

A.

Allows all internal ports to share the same subnet.

B.

Provides separate routable interfaces for each internal port.

C.

An administrator can select ports to be used as a switch.

D.

Configures ports to be part of the same broadcast domain.

 

Answer: A

 

 

QUESTION 44  (Topic 1)

 

When creating administrative users which of the following configuration objects determines access rights on the FortiGate unit.

 

A.

profile

B.

allowaccess interface settings

C.

operation mode

D.

local-in policy

 

Answer: A

 

 

QUESTION 45  (Topic 1)

 

 

 

 

Two-factor authentication is supported using the following methods? (Select all that apply.)

 

A.

FortiToken

B.

Email

C.

SMS phone message

D.

Code books

 

Answer: ABC

 

 

QUESTION 46  (Topic 1)

 

Which of the following items represent the minimum configuration steps an administrator must perform to enable Data Leak Prevention for traffic flowing through the FortiGate unit? (Select all that apply.)

 

A.

Assign a DLP sensor in a firewall policy.

B.

Apply one or more DLP rules to a firewall policy.

C.

Enable DLP globally using the config sys dlp command in the CLI.

D.

Define one or more DLP rules.

E.

Define a DLP sensor.

F.

Apply a DLP sensor to a DoS sensor policy.

 

Answer: ADE

 

 

QUESTION 47  (Topic 1)

 

Which Fortinet products & features could be considered part of a comprehensive solution to monitor and prevent the leakage of senstive data? (Select all that apply.)

 

A.

Archive non-compliant outgoing e-mails using FortiMail.

B.

Restrict unofficial methods of transferring files such as P2P using Application Control lists on a FortiGate.

C.

Monitor database activity using FortiAnalyzer.

D.

Apply a DLP sensor to a firewall policy.

E.

Configure FortiClient to prevent files flagged as sensitive from being copied to a USB disk.

 

Answer: ABD

 

 

 

QUESTION 48  (Topic 1)

 

Which of the following are valid components of the Fortinet Server Authentication Extensions (FSAE)? (Select all that apply.)

 

A.

Domain Local Security Agent.

B.

Collector Agent.

C.

Active Directory Agent.

D.

User Authentication Agent.

E.

Domain Controller Agent.

 

Answer: BE

 

 

QUESTION 49  (Topic 1)

 

File blocking rules are applied before which of the following?

 

A.

Firewall policy processing

B.

Virus scanning

C.

Web URL filtering

D.

White/Black list filtering

 

Answer: B

 

 

QUESTION 50  (Topic 1)

 

The FortiGate unit’s GUI provides a link to update the firmware.

 

Clicking this link will perform which of the following actions?

 

A.

It will connect to the Fortinet Support site where the appropriate firmware version can be selected.

B.

It will send a request to the FortiGuard Distribution Network so that the appropriate firmware version can be pushed down to the FortiGate unit.

C.

It will present a prompt to allow browsing to the location of the firmware file.

D.

It will automatically connect to the Fortinet Support site to download the most recent firmware version for the FortiGate unit.

 

Answer: C

 

Free VCE & PDF File for Fortinet NSE5 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …