Professional Documents
Culture Documents
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE Training Institute
Question 1 What are two reasons why organizations and individuals use web filtering? (Choose two.)
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 1/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 2
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
What is a scenario where automation is used in the Fortinet Security Fabric?
Incorrect
Question 3 What is the security rating in the Fortinet Security Fabric, and how is it calculated?
Incorrect
Question 4 In which architecture is the need to control application traffic becoming increasingly relevant?
Incorrect
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 2/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 5
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Which two settings are included in a Dynamic Host Configuration Protocol (DHCP) server configuration on FortiGate?
Correct (Choose two.)
1 points out of 1
Select one or more:
Address range
Subnet object
Interface Alias
Default gateway
Question 6 What are the three key categories of services provided by FortiGuard Labs?
Incorrect
Question 7 To avoid certificate errors, which field settings must be included in a Secure Sockets Layer (SSL) certificate issued by a
Incorrect certificate authority (CA)?
0 points out of 1
Select one:
issuer: C=US, O=Fortinet, CN=Verisign
signatureAlgorithm: SHA256withRSA and validityPeriod: 365 days
subjectAltName: DNS:*.example.com and extendedKeyUsage: serverAuth
basicConstraints: CA:TRUE and keyUsage: keyCertSign
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 3/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 8
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
What functionality does FortiGate provide to establish secure connections between a main office and its remote branches,
Incorrect over the internet?
0 points out of 1
Select one:
Firewall authentication
Monitoring and logging
Virtual private networks
Security scanning
Question 9 What is the main advantage of using Secure Socket Layer Virtual Private Network (SSL VPN) in web mode?
Correct
Question 10 What are two consequences of allowing a FortiGate license to expire? (Choose two.)
Incorrect
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 4/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 11
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Which two criteria can be matched in the Source field of a firewall policy?
Incorrect
Question 12 In addition to central processing unit (CPU) and memory usage, what are two other key performance parameters you should
Correct monitor on FortiGate? (Choose two.)
1 points out of 1
Select one or more:
Number of days for licenses to expire
Number of SSL sessions
Number of local users and user groups
Number of active VPN tunnels
Question 13 Which scan technique detects known malware by matching signatures in the FortiGuard Labs database?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 5/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 14
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Excluding the steps for tuning the sensors, what is the last step involved in configuring IPS on FortiGate?
Correct
Question 15 Which protocol is used for the authentication and encryption of the data in an IPSec VPN implementation?
Incorrect
Question 16 Which category of services does FortiGuard Labs provide as part of FortiGuard Security Services?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 6/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 17
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
How do you configure an internet service as the destination in a firewall policy?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 7/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 20
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
How does FortiGate application control address evasion techniques used by peer-to-peer protocols?
Incorrect
Question 22 How does the FortiGate intrusion prevention system (IPS) use signatures to detect malicious traffic?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 8/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 23
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Which action can you take to improve the security rating provided by the Fortinet Security Fabric?
Incorrect
Question 24 Why is it recommended that you use user groups instead of individual user accounts in a firewall policy?
Incorrect
Question 25 What is a characteristic of a firewall policy used to allow the traffic from Secure Socket Layer Virtual Private Network (SSL
Incorrect VPN) connections?
0 points out of 1
Select one:
It uses a virtual tunnel interface in the source field.
It assigns SSL certificates to user groups trying to connect.
It defines the port number used for the SSL VPN portal.
It encapsulates the traffic using the VPN settings configured.
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 9/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 26
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Which inspection mode processes and forwards each packet, without waiting for the complete file or web page?
Correct
Question 27 What is the recommended process to configure FortiGate for remote authentication for user identification?
Incorrect
Question 28 Which two additional features and settings can you apply to traffic after it is accepted by a firewall policy? (Choose two.)
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 10/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 29
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
What is grayware?
Incorrect
Question 30 What causes a web browser to display a certificate warning when using Secure Sockets Layer (SSL) deep inspection with the
Incorrect FortiGate CA certificate?
0 points out of 1
Select one:
FortiGate is using a CA that is not trusted by the web browser.
The browser does not support SSL deep inspection.
The temporary certificate makes FortiGate behave like a man-in-the-middle (MITM) attack.
FortiGate is unable to decrypt the SSL-encrypted traffic.
Question 31 Which two steps are involved in configuring web filtering based on FortiGuard category filters? (Choose two.)
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 11/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 32
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
What protocol is used to dynamically create IPSec VPN tunnels?
Correct
Question 33 How does FortiGate handle blocked websites in web filtering using FortiGuard category filters?
Correct
Question 34 Which two protocols can you use for administrative access on a FortiGate interface?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 12/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 35
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Why is Secure Socket Layer (SSL) inspection necessary for the intrusion prevention system (IPS) to detect threats in
Correct encrypted traffic?
1 points out of 1
Select one:
SSL inspection improves network performance by bypassing encrypted traffic.
SSL inspection allows the IPS to detect and analyze encrypted threats.
The IPS engine can inspect only legacy encryption algorithms, by default.
Without SSL inspection, encrypted traffic is automatically blocked by the IPS.
Question 36 What is a recommended best practice when configuring Secure Socket Layer Virtual Private Network (SSL VPN)?
Incorrect
Question 37 What are two activities that cybercriminals can perform using malware? (Choose two.)
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 13/14
3/27/24, 5:08 PM FortiGate 7.4 Operator Exam: Attempt review
Training Institute
Question 38
PMDB Mantis Askbot ResumeDB FortiVision Oriole Egnyte InfoSite FortiOA OWA HCM FortiCare FUSE
Which piece of information does FortiGate know about the user without firewall authentication?
Correct
Question 39 Which actions can you apply to application categories in the Application Control profile?
Incorrect
Question 40 When configuring a static route on FortiGate, what does the destination represent?
Correct
https://training.fortinet.com/mod/quiz/review.php?attempt=18563073&cmid=485066 14/14