合格させるFortinet FCP_FCT_AD-7.2テスト問題でテストエンジンとPDFを提供中
あなたをお手軽にFCP_FCT_AD-7.2試験合格させるリアルFCP_FCT_AD-7.2練習問題集で更新されたのは2024年10月12日
質問 # 32
Exhibit.
Refer to the exhibits, which show the Zero Trust Tag Monitor and the FortiClient GUI status.
Remote-Client is tagged as Remote-User* on the FortiClient EMS Zero Trust Tag Monitor.
What must an administrator do to show the tag on the FortiClient GUI?
- A. Change the FortiClient system settings to enable lag visibility.
- B. Change the FortiClient EMS shared settings to enable tag visibility.
- C. Update tagging rule logic to enable tag visibility.
- D. Change the endpoint alerts configuration to enable tag visibility.
正解:D
解説:
Observation of Exhibits:
The exhibits show the Zero Trust Tag Monitor on FortiClient EMS and the FortiClient GUI status.
Remote-Client is tagged as "Remote-Endpoints" on the FortiClient EMS Zero Trust Tag Monitor.
Enabling Tag Visibility:
To show the tag on the FortiClient GUI, the endpoint alerts configuration must be adjusted to enable tag visibility.
Verification:
The correct action is to change the endpoint alerts configuration to enable tag visibility, ensuring that the tag appears in the FortiClient GUI.
Reference:
FortiClient EMS and FortiClient configuration documentation from the study guides.
質問 # 33
Refer to the exhibit.
An administrator has restored the modified XML configuration file to FortiClient and sees the error shown in the exhibit.
Based on the XML settings shown in the exhibit, what must the administrator do to resolve the issue with the XML configuration file?
- A. The administrator must use a password to decrypt the file
- B. The administrator must save the file as FortiClient-config conf.
- C. The administrator must change the file size
- D. The administrator must resolve the XML syntax error.
正解:D
解説:
Based on the error message and the XML configuration file shown in the exhibit:
* The error "Failed to process the file" typically indicates an issue with the XML syntax.
* Upon reviewing the XML content, it is crucial to ensure that all tags are correctly formatted, properly opened and closed, and that there are no syntax errors.
* Resolving any XML syntax errors will allow FortiClient to successfully process and restore the configuration file.
Therefore, the administrator must resolve the XML syntax error to fix the issue.
References
* FortiClient EMS 7.2 Study Guide, Configuration File Management Section
* General XML Syntax Guidelines and Best Practices
質問 # 34
Refer to the exhibit.
Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)
- A. Run Calculator application on the endpoint.
- B. Patch applications that have vulnerability rated as high or above.
- C. Enable the web filter profile.
- D. Integrate FortiSandbox tor infected file analysis
正解:A、B
解説:
Observation of Compliance Profile:
The compliance profile shown in the exhibit includes rules for vulnerability severity level and running process (Calculator.exe).
Evaluating Actions for Compliance:
To make the endpoint compliant, the administrator needs to ensure that the vulnerability severity level is medium or higher is patched (D).
Additionally, the Calculator.exe application must be running on the endpoint (B).
Eliminating Incorrect Options:
Enabling the web filter profile (A) is not related to the compliance rules shown.
Integrating FortiSandbox (C) is not a requirement in the given compliance profile.
Conclusion:
The correct actions are to run the Calculator application on the endpoint (B) and patch applications with vulnerabilities rated as high or above (D).
Reference:
FortiClient EMS compliance profile configuration documentation from the study guides.
質問 # 35
FortiClient EMS endpoint policies
Refer to the exhibit, which shows multiple endpoint policies on FortiClient EMS. Which policy is applied to the endpoint in the AD group trainingAD
- A. The sales policy
- B. The Training policy
- C. The Default policy because it has the highest priority
- D. Both the Sales and Training policies because their priority is higher than the Default policy
正解:B
解説:
* Observation of Endpoint Policies:
* The exhibit shows multiple endpoint policies with their assigned groups, priority levels, and enabled status.
* Evaluating Policy Assignment:
* The Training policy is specifically assigned to the "trainingAD.training.lab" group, with a higher priority than the Default policy.
* Conclusion:
* The correct policy applied to the endpoint in the AD group "trainingAD" is the Training policy (A).
References:
* FortiClient EMS policy configuration and priority management documentation from the study guides.
質問 # 36
Refer to the exhibit, which shows the output of the ZTNA traffic log on FortiGate.
What can you conclude from the log message?
- A. The remote user connection does not match the ZTNA server configuration.
- B. The remote user connection does not match the ZTNA firewall policy.
- C. The remote user connection does not match the ZTNA rule configuration.
- D. The remote user connection does not match the local-in policy.
正解:C
解説:
Observation of ZTNA Traffic Log:
The log message indicates that the remote user connection was denied due to failure to match a proxy policy.
Evaluating Log Message:
The message suggests that the connection does not match the existing ZTNA rule configuration, leading to the denial.
Conclusion:
The correct conclusion from the log message is that the remote user connection does not match the ZTNA rule configuration (B).
Reference:
ZTNA traffic log analysis and configuration documentation from the study guides.
質問 # 37
Which three types of antivirus scans are available on FortiClient? (Choose three )
- A. Quick scan
- B. Custom scan
- C. Proxy scan
- D. Flow scan
- E. Full scan
正解:A、B、E
解説:
FortiClient offers several types of antivirus scans to ensure comprehensive protection:
* Full scan:Scans the entire system for malware, including all files and directories.
* Custom scan:Allows the user to specify particular files, directories, or drives to be scanned.
* Quick scan:Scans the most commonly infected areas of the system, providing a faster scanning option.
These three types of scans provide flexibility and thoroughness in detecting and managing malware threats.
References
* FortiClient EMS 7.2 Study Guide, Antivirus Scanning Options Section
* Fortinet Documentation on Types of Antivirus Scans in FortiClient
質問 # 38
What is the function of the quick scan option on FortiClient?
- A. It scans executable files. DLLs, and drivers that are currently running, for threats.
- B. It allows users to select a specific file folder on their local hard disk drive (HDD), to scan for threats.
- C. It scans programs and drivers that are currently running, for threats
- D. It performs a full system scan including all files, executable files. DLLs, and drivers for throats.
正解:A
解説:
* Understanding Quick Scan Function:
* The quick scan option on FortiClient is designed to scan certain elements of the system quickly for threats.
* Evaluating Scan Scope:
* The quick scan specifically targets executable files, DLLs, and drivers that are currently running, providing a rapid assessment of the active components of the system.
* Conclusion:
* The correct answer is D, as it accurately describes the function of the quick scan option on FortiClient.
References:
* FortiClient scanning options documentation from the study guides.
質問 # 39
Refer to the exhibit, which shows the endpoint summary information on FortiClient EMS.
What two conclusions can you make based on the Remote-Client status shown above? (Choose two.)
- A. The endpoint is configured to support FortiSandbox.
- B. The endpoint has been assigned the Default endpoint policy.
- C. The endpoint is currently off-net.
- D. The endpoint is classified as at risk.
正解:B、C
解説:
Based on the Remote-Client status shown in the exhibit:
* Endpoint Policy:The "Policy" field shows "Default," indicating that the endpoint has been assigned the Default endpoint policy.
* Connection Status:The "Location" field shows "Off-Fabric," meaning that the endpoint is currently off the corporate network (off-net).
Therefore, the two conclusions that can be made are:
* The endpoint has been assigned the Default endpoint policy.
* The endpoint is currently off-net.
References
* FortiClient EMS 7.2 Study Guide, Endpoint Summary Information Section
* Fortinet Documentation on Endpoint Policies and Status Indicators
質問 # 40
An administrator wants to simplify remote accesswithout asking users to provideuser credentials Which access control method provides this solution?
- A. SSL VPN
- B. ZTNA full mode
- C. ZTNA IP/MAC littering mode
- D. L2TP
正解:B
解説:
* Simplifying Remote Access:
* The administrator wants to simplify remote access without asking users to provide user credentials.
* Evaluating Access Control Methods:
* ZTNA full mode can provide seamless access by leveraging device identity and posture, eliminating the need for user credentials for each access request.
* Other methods like SSL VPN and L2TP typically require user credentials.
* Conclusion:
* The correct access control method that provides this solution is ZTNA full mode.
References:
* ZTNA section in the FortiGate Infrastructure 7.2 Study Guide.
質問 # 41
ZTNA Network Topology
Refer to the exhibits, which show a network topology diagram of ZTNA proxy access and the ZTNA rule configuration.
An administrator runs the diagnose endpoint record list CLI command on FortiGate to check Remote-Client endpoint information, however Remote-Client is not showing up in the endpoint record list.
What is the cause of this issue?
- A. Remote-Client failed the client certificate authentication.
- B. Remote-Client provided an invalid certificate to connect to the ZTNA access proxy.
- C. Remote-Client has not initiated a connection to the ZTNA access proxy.
- D. Remote-Client provided an empty client certificate to connect to the ZTNA access proxy.
正解:A
質問 # 42
Refer to the exhibit.
Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)
- A. Run Calculator application on the endpoint.
- B. Patch applications that have vulnerability rated as high or above.
- C. Enable the web filter profile.
- D. Integrate FortiSandbox tor infected file analysis
正解:A、B
解説:
* Observation of Compliance Profile:
* The compliance profile shown in the exhibit includes rules for vulnerability severity level and running process (Calculator.exe).
* Evaluating Actions for Compliance:
* To make the endpoint compliant, the administrator needs to ensure that the vulnerability severity level is medium or higher is patched (D).
* Additionally, the Calculator.exe application must be running on the endpoint (B).
* Eliminating Incorrect Options:
* Enabling the web filter profile (A) is not related to the compliance rules shown.
* Integrating FortiSandbox (C) is not a requirement in the given compliance profile.
* Conclusion:
* The correct actions are to run the Calculator application on the endpoint (B) and patch applications with vulnerabilities rated as high or above (D).
References:
* FortiClient EMS compliance profile configuration documentation from the study guides.
質問 # 43
Refer to the exhibit.
Based on the settings shown in the exhibit what action will FortiClient take when it detects that a user is trying to download an infected file?
- A. Quarantines the infected files and logs all access attempts
- B. Allows the infected file to download without scan
- C. Blocks the infected files as it is downloading
- D. Sends the infected file to FortiGuard for analysis
正解:B
解説:
Block Malicious Website has nothing to do with infected files. Since Realtime Protection is OFF, it will be allowed without being scanned.
Based on the settings shown in the exhibit:
* Realtime Protection:OFF
* Dynamic Threat Detection:OFF
* Block malicious websites:ON
* Threats Detected:75
The "Realtime Protection" setting is crucial for preventing infected files from being downloaded and executed. Since "Realtime Protection" is OFF, FortiClient will not actively scan files being downloaded. The setting "Block malicious websites" is intended to prevent access to known malicious websites but does not scan files for infections.
Therefore, when a user tries to download an infected file, FortiClient will allow the file to download without scanning it due to the Realtime Protection being OFF.
References
* FortiClient EMS 7.2 Study Guide, Antivirus Protection Section
* Fortinet Documentation on FortiClient Real-time Protection Settings
質問 # 44
Refer to the exhibits.

Which show the Zero Trust Tag Monitor and the FortiClient GUI status.
Remote-Client is tagged as Remote-Users on the FortiClient EMS Zero Trust Tag Monitor.
What must an administrator do to show the tag on the FortiClient GUI?
- A. Change the user identity settings to enable tag visibility
- B. Change the endpoint control setting to enable tag visibility
- C. Change the FortiClient system settings to enable tag visibility
- D. Update tagging rule logic to enable tag visibility
正解:C
解説:
Based on the exhibits provided:
The "Remote-Client" is tagged as "Remote-Users" in the FortiClient EMS Zero Trust Tag Monitor.
To ensure that the tag "Remote-Users" is visible in the FortiClient GUI, the system settings within FortiClient need to be updated to enable tag visibility.
The tag visibility feature is controlled by FortiClient system settings which manage how tags are displayed in the GUI.
Therefore, the administrator needs to change the FortiClient system settings to enable tag visibility.
Reference
FortiClient EMS 7.2 Study Guide, Zero Trust Tagging Section
FortiClient Documentation on Tag Management and Visibility Settings
質問 # 45
What action does FortiClient anti-exploit detection take when it detects exploits?
- A. Patches the compromised application process
- B. Deletes the compromised application process
- C. Blocks memory allocation to the compromised application process
- D. Terminates the compromised application process
正解:A
解説:
The anti-exploit detection protects vulnerable endpoints from unknown exploit attacks. FortiClient monitors the behavior of popular applications, such as web browsers (Internet Explorer, Chrome, Firefox, Opera), Java
/Flash plug-ins, Microsoft Office applications, and PDF readers, to detect exploits that use zero-day or unpatched vulnerabilities to infect the endpoint. Once detected, FortiClient terminates the compromised application process.
質問 # 46
Refer to the exhibit.
Based on the settings shown in the exhibit which statement about FortiClient behavior is true?
- A. FortiClient blocks and deletes infected files after scanning them.
- B. FortiClient scans infected files when the user copies files to the Resources folder
- C. FortiClient copies infected files to the Resources folder without scanning them.
- D. FortiClient quarantines infected files and reviews later, after scanning them.
正解:D
解説:
Action On Virus Discovery Warn the User If a Process Attempts to Access Infected Files Quarantine Infected Files. You can use FortiClient to view, restore, or delete the quarantined file, as well as view the virus name, submit the file to FortiGuard, and view logs. Deny Access to Infected Files Ignore Infected Files
質問 # 47
An administrator is required to maintain a software vulnerability on the endpoints, without showing the feature on the FortiClient. What must the administrator do to achieve this requirement?
- A. Select the vulnerability scan feature in the deployment package, but disable thefeatureon the endpoint profile
- B. Disable select the vulnerability scan feature in the deployment package
- C. Click the hide icon on the vulnerability scan profile assigned to endpoint
- D. Use the default endpoint profile
正解:C
解説:
* Requirement Analysis:
* The administrator needs to maintain a software vulnerability scan on endpoints without showing the feature on FortiClient.
* Evaluating Options:
* Disabling the feature in the deployment package or endpoint profile would remove the functionality entirely, which is not desired.
* Using the default endpoint profile may not meet the specific requirement of hiding the feature.
* Clicking the hide icon on the vulnerability scan profile assigned to the endpoint will keep the feature active but hidden from the user's view.
* Conclusion:
* The correct action is to click the hide icon on the vulnerability scan profile assigned to the endpoint (C).
References:
* FortiClient EMS feature configuration and management documentation from the study guides.
質問 # 48
......
Fortinet FCP_FCT_AD-7.2 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
FCP_FCT_AD-7.2リアル無料試験問題と解答:https://www.passtest.jp/Fortinet/FCP_FCT_AD-7.2-shiken.html
2024年最新の実際に出る検証済みの無料Fortinet FCP_FCT_AD-7.2試験問題:https://drive.google.com/open?id=1KgcOmDAXwYnmJ1ow2nEsiWTvAUgjYBAn