PassLeader just published the NEWEST Fortinet NSE5_FMG-6.4 exam dumps! And, PassLeader offer two types of the NSE5_FMG-6.4 dumps — NSE5_FMG-6.4 VCE dumps and NSE5_FMG-6.4 PDF dumps, both VCE and PDF contain the NEWEST NSE5_FMG-6.4 exam questions, they will help you PASSING the Fortinet NSE5_FMG-6.4 exam easily! Now, get the NEWEST NSE5_FMG-6.4 dumps in VCE and PDF from PassLeader — https://www.passleader.com/nse5-fmg-6-4.html (85 Q&As Dumps)
What’s more, part of that PassLeader NSE5_FMG-6.4 dumps now are free — https://drive.google.com/drive/folders/1jKAyvTXrFlN0LcaZKIUWXg_x8KI6xsdr
NEW QUESTION 66
An administrator would like to review, approve, or reject all the firewall policy changes made by the junior administrators. How should the Workspace mode be configured on FortiManager?
A. Set to workflow and use the ADOM locking feature.
B. Set to read/write and use the policy locking feature.
C. Set to normal and use the policy locking feature.
D. Set to disable and use the policy locking feature.
NEW QUESTION 67
When configuring FortiGuard on FortiManager, which two statements are correct regarding Allow Push Update settings configured in the FortiGuard Antivirus and IPS Settings? (Choose two.)
A. If an urgent or critical FortiGuard Antivirus and/or IPS update becomes available, the FortiManger bult-in FDS will send push update notifications to each managed device.
B. If an urgent or critical FortiGuard Antivirus and/or IPS update becomes available, the FortiManger bult-in FDS will send push update notifications.
C. FortiManager’s built-in FDS service may not correctly receive push updates if the external facing IP address of any intermediary NAT device is dynamic.
D. FortiManager’s built-in FDS service does not allow an administrator to override the default FortiManger IP address and port used by the FDN to send update messages.
NEW QUESTION 68
An administrator would like to create an SD-WAN using central management in the Training ADOM. To create an SD-WAN using central management, which two steps must be completed? (Choose two.)
A. Specify a gateway address when you create a default SD-WAN static route.
B. Enable SD-WAN central management in the Training ADOM.
C. Configure and install the SD-WAN firewall policy and SD-WAN static route before installing the SD- WAN template settings.
D. Remove all the interface references such as routes or policies that will be a part of SD-WAN member interfaces.
NEW QUESTION 69
Which statements are true about Offline mode on the FortiManager? (Choose two.)
A. Enabled by default.
B. Devices cannot be managed when Offline mode is enabled.
C. Enabling Offline mode enables fgfm protocol (TCP 541).
D. Offline mode is enabled by default when backup is restored on FortiManager.
NEW QUESTION 70
An administrator run the reload failure command: diagnose test deploymanager reload config <deviceid> on FortiManager. What does this command do?
A. It downloads the latest configuration from the specified FortiGate and performs a reload operation on the device database.
B. It installs the latest configuration on the specified FortiGate and update the revision history database.
C. It compares and provides differences in configuration on FortiManager with the current running configuration of the specified FortiGate.
D. It installs the provisioning template configuration on the specified FortiGate.
NEW QUESTION 71
Which ports are commonly used by FortiManager? (Choose two.)
A. TCP 541 for remote management of a FortiGate unit.
B. TCP 5199 HA heartbeat or synchronization (FortiManager HA cluster).
C. TCP 703 HA heartbeat or synchronization (FortiManager HA cluster).
D. TCP 514 for remote management of a FortiGate unit.
NEW QUESTION 72
Which of the following items does an FGFM keepalive message include? (Choose two.)
A. FortiGate uptime.
B. FortiGate license information.
C. FortiGate IPS version.
D. FortiGate configuration checksum.
NEW QUESTION 73
Which two statements are correct regarding FortiGuard features on FortiManager? (Choose two.)
A. FortiManager can function as a local FortiGuard Distribution Server (FDS).
B. In FortiManger HA only master FortiManager can act as an FDS server.
C. When FortiManager is configured for closed network operation, it can connect to public FDS servers to obtain managed device information and sync packages.
D. FortiGuard information is not synchronized across a FortiManager cluster.
NEW QUESTION 74
Which of the following statements are true regarding ADOM revisions? (Choose two.)
A. ADOM revisions can significantly increase the size of the configuration backups.
B. ADOM revisions can save the current size of the whole ADOM.
C. ADOM revisions can create System Checkpoints for the FortiManager configuration.
D. ADOM revisions can save the current state of all policy packages and objects for an ADOM.
NEW QUESTION 75
Which two statements are correct regarding synchronization between primary and secondary devices in a FortiManager HA duster? (Choose two.)
A. All device configurations including global databases are synchrorized in the HA cluster.
B. FortiGuard databases are downloaded separately by each cluster device.
C. FortiGuard databases are downloaded by the primary FortManager device and then synchronized with all secondary devices.
D. Local logs and log configuration settings are synchronized in the HA cluster.
NEW QUESTION 76
What does a policy package status of Modified indicate?
A. The policy configuration has been changed on a managed device and changes have not yet been imported into FortiManager.
B. The policy package was never imported after a device was registered on FortiManager.
C. FortiManager is unable to determine the policy package status.
D. The policy configuration has been changed on FortiManager and changes have not yet been installed on the managed device.
NEW QUESTION 77
When a FortiManager HA primary device fails, which two statements are correct for promoting a secondary device to the primary role? (Choose two.)
A. Must manually reconfigure one of the secondary devices to become the master device.
B. Reboot is required when promoting from secondary to primary.
C. All other secondary devices must be reconfigured to point to new primary device.
D. The FortiManager HA suports IP takeover where an HA state transition does not require manual intervention.
NEW QUESTION 78
How are the points calculated when using FortiMeter to deploy FortiOS-VM? (Choose two.)
A. Based on the number of sessions on the mgmt interface of FortiOS-VM.
B. Based on the FortiGuard service option enabled for FortiOS-VM.
C. Based on the traffic usage on port1 and port2 on FortiOS-VM.
D. Based on the amount of traffic (per GB) passing through the FortiOS-VM.
NEW QUESTION 79
Which statement correctly identified the APIs supported by FortiManager?
A. JSON and XML
B. JSON and YAML
C. YAML and REST
D. XML and YAML
NEW QUESTION 80
Which two conditions trigger FortiManager to create a new revision history? (Choose two.)
A. When FortiManager installs device-level changes on a managed device.
B. When changes to the device-level database are made on FortiManager.
C. When FortiManager is auto-updated with configuration changes made directly on a managed device.
D. When a configuration revision is reverted to a previous revision in the revision history.
NEW QUESTION 81
Which two statements are correct regarding recovery logic used by FortiGate-FortiManager (FGFM) protocol when a configuration install is performed from the FortiManager to the managed FortiGate? (Choose two.)
A. FortiGate devices receive set and unset commands for each configuration change FortiManager sends.
B. FortiGate writes configuration changes to the configuration file, it then tests communication to the FortiManager via the FGFM protocol.
C. FortiGate applies configuration changes to the running configuration, it then tests communication to the FortiManager via the FGFM protocol.
D. FortiGate will shutdown if configuration changes render FortiManager unreachable via the FGFM protocol.
NEW QUESTION 82
Which two statements are correct for configuration changes made by FortiManager scripts? (Choose two.)
A. When run on the device database, you can install changes to the managed FortiGate devices using the installation wizard.
B. When run on the device database, changes are automatically installed to the managed FortiGate devices.
C. When run on managed devices directly, changes are automatically installed to the managed FortiGate devices.
D. When run on managed devices directly, you can install changes to the managed FortiGate devices using the installation wizard.
NEW QUESTION 83
Which of the following are FortiManager features? (Choose two.)
A. Administrative Domains
B. Virtual Domains
C. Centralized Management
D. Cloud-based Management
NEW QUESTION 84
Learning the PassLeader NSE5_FMG-6.4 dumps with VCE and PDF for 100% passing Fortinet certification — https://www.passleader.com/nse5-fmg-6-4.html (85 Q&As Dumps)
BONUS!!! Download part of PassLeader NSE5_FMG-6.4 dumps for free — https://drive.google.com/drive/folders/1jKAyvTXrFlN0LcaZKIUWXg_x8KI6xsdr