• Home
  • Articles
  • NSE5_FMG-7.2 Exam Info and Free Practice Test All-in-One Exam Guide May-2025 [Q36-Q59]

NSE5_FMG-7.2 Exam Info and Free Practice Test All-in-One Exam Guide May-2025 [Q36-Q59]

Share

NSE5_FMG-7.2 Exam Info and Free Practice Test All-in-One Exam Guide May-2025

Pass Fortinet NSE5_FMG-7.2 Actual Free Exam Q&As Updated Dump May 13, 2025

NEW QUESTION # 36
View the following exhibit:

An administrator used the value shown in the exhibit when importing a Local-FortiGate into FortiManager. What name will be used to display the firewall policy for port1?

  • A. port1 on both FortiGate and FortiManager
  • B. port1 on FortiGate and WAN on FortiManager
  • C. WAN zone on FortiGate and WAN interface on FortiManager
  • D. WAN zone on FortiGate and WAN zone on FortiManager

Answer: B


NEW QUESTION # 37
An administrator has assigned a global policy package to custom ADOM1. Then the administrator creates a new policy package Fortinet in the custom ADOM1. What will happen to the Fortinet policy package when it is created?

  • A. You can select the option to assign the global polices
  • B. it automatically assigns the global policies
  • C. You need to reapply the global poky package to the ADOM
  • D. You need to assign the global policy package from the global ADOM

Answer: B

Explanation:
When a new policy package is created in a custom ADOM (Administrative Domain) that already has a global policy package assigned to it, FortiManager automatically applies the global policies to the newly created policy package. This means that the global header and footer policies, which are part of the global policy package assigned to the ADOM, will be automatically included in the new policy package. This helps ensure consistency in policy enforcement across all policy packages within the ADOM and simplifies the management of common policies across different devices or sites managed within the same ADOM.


NEW QUESTION # 38
Refer to the exhibit.

A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?

  • A. The administrator had restored the FortiManager configuration file
  • B. The administrator can reclaim the FGFM tunnel to get both devices online
  • C. The administrator must refresh both devices to restore connectivity
  • D. FortiManager test internet connectivity therefore, both devices appear to be down

Answer: D


NEW QUESTION # 39
Refer to the exhibit.

An administrator would like to create three ADOMs on FortiManager with different access levels based on departments.
What two conclusions can you draw from the design shown in the exhibit? (Choose two.)

  • A. The administrator must set the FortiManager ADOM mode to Advanced.
  • B. The administrator must configure FortiManager in workspace mode.
  • C. The FortiManager policies and objects database can be shared between the Financial and HR ADOMs.
  • D. Admin A can access VDOM2 and VDOM3 with the super user profile.

Answer: A,C


NEW QUESTION # 40
Refer to the exhibit.

A junior administrator is troubleshooting a FortiManager connectivity issue that rs occurring with managed FortiGate devices Given the FortiManager device manager settings shown in the exhibit what can you conclude from the exhibit?

  • A. The administrator had restored the FortiManager configuration file
  • B. FortiManager test internet connectivity therefore, both devices appear to be down
  • C. The administrator must refresh both devices to restore connectivity
  • D. The administrator can reclaim the FGFM tunnel to get both devices online

Answer: D


NEW QUESTION # 41
An administrator with the Super_User profile is unable to log in to FortiManager because of an authentication failure message.
Which troubleshooting step should you take to resolve the issue?

  • A. Make sure the administrator IP address is part of the trusted hosts.
  • B. Make sure FortiManager Access is enabled in the administrator profile
  • C. Make sure Offline Mode is disabled
  • D. Make sure ADOMs are enabled and the administrator has access to the Global ADOM

Answer: A

Explanation:
Even if a user entered the correct userid/password, the FMG denies access if a user is logging in from an untrusted source IP subnets.


NEW QUESTION # 42
View the following exhibit.

An administrator has created a firewall address object, Training, which is used in the Local-FortiGate policy package. When the install operation is performed, which IP Netmask will be installed on the Local-FortiGate, for the Training firewall address object?

  • A. 10.0.1.0/24
  • B. Local-FortiGate will automatically choose an IP Network based on its network interface settings.
  • C. 192.168.0.1/24
  • D. It will create firewall address group on Local-FortiGate with 192.168.0.1/24 and 10.0.1.0/24 object values

Answer: A


NEW QUESTION # 43
Refer to the exhibit.

Which statement is true about the FortiManager ADOM policy tab based on the API request?

  • A. The API command has enabled both central NAT and interface policy on the policy tab.
  • B. The API command has requested the policy tab permissions information only.
  • C. The API command has failed when requesting policy tab permissions information.
  • D. The API command has applied to customer with ID: 200.

Answer: A


NEW QUESTION # 44
Refer to the following exhibit:

Which of the following statements are true based on this configuration? (Choose two.)

  • A. Ungraceful closed sessions will keep the ADOM in a locked state until the administrator session times out
  • B. Unlocking an ADOM will submit configuration changes automatically to the approval administrator
  • C. Unlocking an ADOM will install configuration automatically on managed devices
  • D. The same administrator can lock more than one ADOM at the same time

Answer: A,D


NEW QUESTION # 45
Refer to the exhibit.

An administrator logs into the FortiManager GUI and sees the panes shown in the exhibit.
Which two reasons can explain why the FortiAnalyzer feature panesdo notappear? (Choose two.)

  • A. FortiAnalyzer features are not enabled on FortiManager.
  • B. The administrator logged in using the unsecure protocol HTTP, so the view is restricted.
  • C. The administrator IP address is not a part of the trusted hosts configured on FortiManager interfaces.
  • D. The administrator profile does not have full access privileges like theSuper_Userprofile.

Answer: A,D


NEW QUESTION # 46
View the following exhibit.

When usingInstall Configoption to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)

  • A. Provides the option to preview configuration changes prior to installing them
  • B. Once initiated, the install process cannot be canceled and changes will be installed on the managed device
  • C. Installs device-level changes to FortiGate without launching theInstall Wizard
  • D. Will not create new revision in the revision history

Answer: B,C


NEW QUESTION # 47
View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install Oncolumn?

  • A. Policy seq#3 will be not installed on any managed device
  • B. Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
  • C. The Install On column value represents successful installation on the managed devices
  • D. Policy seq#3 will be installed on the Trainer[NAT] VDOM only

Answer: B


NEW QUESTION # 48
Refer to the exhibit.

An administrator is about to add the FortiGate device to FortiManager using the discovery process FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings What is the expected result?

  • A. During discovery FortiManager uses only the FortiGate serial number to establish the connection
  • B. During discovery FortiManager sets the NATed device IP address on FortiGate
  • C. During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate
  • D. During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate

Answer: B


NEW QUESTION # 49
An administrator would like to create an SD-WAN using central management. What steps does the administrator need to perform to create an SD-WAN using central management?

  • A. You must specify a gateway address when you create a default static route
  • B. Remove all the interface references such as routes or policies
  • C. First create an SD-WAN firewall policy, add member interfaces to the SD-WAN template and create a static route
  • D. Enable SD-WAN central management in the ADOM, add member interfaces, create a static route and SDWAN firewall policies.

Answer: D


NEW QUESTION # 50
Refer to the exhibit.

An administrator has configured the command shown in the exhibit on FortiManager. A configuration change has been installed from FortiManager to the managed FortiGate that causes the FGFM tunnel to go down for more than 15 minutes.
What is the purpose of this command?

  • A. It allows FortiGate to unset central management settings.
  • B. It allows FortiGate to reboot and restore a previously working firmware image.
  • C. It allows FortiGate to reboot and recover the previous configuration from its configuration file.
  • D. It allows the FortiManager to revert and install a previous configuration revision on the managed FortiGate.

Answer: C

Explanation:
Reference:https://docs.fortinet.com/document/fortimanager/6.2.0/fortigate-fortimanager-communicationsprotoco


NEW QUESTION # 51
Refer to the exhibit.

Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?

  • A. FortiManager ignored the firewall service category General and did not update Its database with the value
  • B. FortiManager ignored the firewall service category general and deleted the duplicate value In Its database
  • C. FortiManager ignored the firewall service category General but created a new service category in its database.
  • D. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.

Answer: A


NEW QUESTION # 52
Refer to the exhibit.

Given the configuration shown in the exhibit, how did FortiManager handle the service category named General?

  • A. FortiManager ignored the firewall service category General and did not update Its database with the value
  • B. FortiManager ignored the firewall service category general and deleted the duplicate value In Its database
  • C. FortiManager ignored the firewall service category General but created a new service category in its database.
  • D. FortiManager ignored the firewall service category General and updated the FortiGate duplicate value in the FortiGate database.

Answer: A


NEW QUESTION # 53
View the following exhibit.

Given the configurations shown in the exhibit, what can you conclude from the installation targets in the Install On column?

  • A. Policy seq#3 will be not installed on any managed device
  • B. Policy seq#3 will be installed on all managed devices and VDOMs that are listed under Installation Targets
  • C. The Install On column value represents successful installation on the managed devices
  • D. Policy seq#3 will be installed on the Trainer[NAT] VDOM only

Answer: B


NEW QUESTION # 54
Which two statements about the scheduled backup of FortiManager are true? (Choose two.)

  • A. It backs up all devices and the FortiGuard database.
  • B. It can be configured using the CLI and GUI.
  • C. It supports FTP, SCP, and SFTP.
  • D. It does not back up firmware images saved on FortiManager.

Answer: C,D


NEW QUESTION # 55
Refer to the exhibit showing a Download Import Report.
Why is it failing to import firewall policy ID 1?

  • A. Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.
  • B. Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.
  • C. Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.
  • D. The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.

Answer: D


NEW QUESTION # 56
An administrator configures a new firewall policy on FortiManager and has not yet pushed the changes to the managed FortiGate.
In which database will the configuration be saved?

  • A. ADOM-level database
  • B. Configuration-level database
  • C. Device-level database
  • D. Revision history database

Answer: A

Explanation:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD47942


NEW QUESTION # 57
An administrator created a header and footer global policy package and assigned it to an ADOM.
What are two outcomes from this action? (Choose two.)

  • A. You must manually move the header and footer policies after the policy assignment.
  • B. After you assign the global policy package to an ADOM, the policy package is hidden from the ADOM and cannot be viewed.
  • C. If you assign an additional global policy package to the same ADOM, FortiManaqer removes previously assigned policies.
  • D. You can edit or delete all the global objects in the global ADOM.

Answer: C,D

Explanation:
C = Assigning an additional global policy package to the same individual ADOM policy package removes previously assigned policies. D = After you assign the global ADOM objects, they appear on the Policy & Objects pane for that ADOM. All global objects start with "g" and are edited or deleted in the global ADOM only. Reference [Page 259] - https://ebin.pub/fortinet-fortimanager-study-guide-for-fortimanager-72.html


NEW QUESTION # 58
Refer to the exhibit.

Which statement is true about the FortiManager ADOM policy tab based on the API request?

  • A. The API command has enabled both central NAT and interface policy on the policy tab.
  • B. The API command has requested the policy tab permissions information only.
  • C. The API command has failed when requesting policy tab permissions information.
  • D. The API command has applied to customer with ID: 200.

Answer: A


NEW QUESTION # 59
......

Online Questions - Valid Practice NSE5_FMG-7.2 Exam Dumps Test Questions: https://torrentpdf.practicedump.com/NSE5_FMG-7.2-exam-questions.html

Related Articles

more
Fortinet NSE5_FMG-7.2 Certification Practice Exam

Copyright © 2026 PracticeDump NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy