Summer Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Free Fortinet NSE5_FAZ-7.2 Practice Exam with Questions & Answers

Questions 1

What is the purpose of a dataset query in FortiAnalyzer?

Options:
A.

It sorts log data into tables

B.

It extracts the database schema

C.

It retrieves log data from the database

D.

It injects log data into the database

Fortinet NSE5_FAZ-7.2 Premium Access
Questions 2

Which two statements about log forwarding are true? (Choose two.)

Options:
A.

Forwarded logs cannot be filtered to match specific criteria.

B.

Logs are forwarded in real-time only.

C.

The client retains a local copy of the logs after forwarding.

D.

You can use aggregation mode only with another FortiAnalyzer.

Questions 3

Refer to the exhibit.

NSE5_FAZ-7.2 Question 3

Laptop1 is used by several administrators to manage FortiAnalyzer. You want to configure a generic text filter that matches all login attempts to the web interface generated by any user other than "admin", and coming from Laptop1.

Which filter will achieve the desired result?

Options:
A.

operation-login & dstip==10.1.1.210 & user!-admin

B.

operation-login & srcip==10.1.1.100 & dstip==10.1.1.210 & user==admin

C.

operation-login & performed_on=="GUI(10.1.1.210)" & user!=admin

D.

operation-login & performed_on=="GUI(10.1.1.100)" & user!=admin

Questions 4

Logs are being deleted from one of the ADOMs earlier than the configured setting for archiving in the data

policy.

What is the most likely problem?

Options:
A.

CPU resources are too high

B.

Logs in that ADOM are being forwarded, in real-time, to another FortiAnalyzer device

C.

The total disk space is insufficient and you need to add other disk

D.

The ADOM disk quota is set too low, based on log rates

Questions 5

Why must you wait for several minutes before you run a playbook that you just created?

Options:
A.

FortiAnalyzer needs that time to parse the new playbook.

B.

FortiAnalyzer needs that time to back up the current playbooks.

C.

FortiAnalyzer needs that time to ensure there are no other playbooks running.

D.

FortiAnalyzer needs that time to debug the new playbook.

Questions 6

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

Options:
A.

The total disk space is insufficient and you need to add other disk.

B.

CPU resources are too high.

C.

The ADOM disk quota is set too low based on log rates.

D.

Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.

Questions 7

What FortiView tool can you use to automatically build a dataset and chart based on a filtered search result?

Options:
A.

Chart Builder

B.

Export to Report Chart

C.

Dataset Library

D.

Custom View

Questions 8

Refer to the exhibit.

NSE5_FAZ-7.2 Question 8

What does the data point at 14:55 tell you?

Options:
A.

The received rate is almost at its maximum for this device

B.

The sqlplugind daemon is behind in log indexing by two logs

C.

Logs are being dropped

D.

Raw logs are reaching FortiAnalyzer faster than they can be indexed

Questions 9

You have recently grouped multiple FortiGate devices into a single ADOM.System Settings>Storage Info

shows the quota used.

What does the disk quota refer to?

Options:
A.

The maximum disk utilization for each device in the ADOM

B.

The maximum disk utilization for the FortiAnalyzer model

C.

The maximum disk utilization for the ADOM type

D.

The maximum disk utilization for all devices in the ADOM

Questions 10

A playbook contains five tasks in total. An administrator runs the playbook and four out of five tasks finish successfully, but one task fails. What will be the status of the playbook after it is run?

Options:
A.

Running

B.

Failed

C.

Upstream_failed

D.

Success

Exam Code: NSE5_FAZ-7.2
Certification Provider: Fortinet
Exam Name: Fortinet NSE 5 - FortiAnalyzer 7.2
Last Update: Jul 15, 2025
Questions: 137

Fortinet Related Exams

How to pass Fortinet NSE5_FCT-7.0 - NSE5_FCT-7.0 NSE 5 - FortiClient EMS 7.0 Exam
How to pass Fortinet NSE5_EDR-5.0 - Fortinet NSE 5 - FortiEDR 5.0 Exam Exam
How to pass Fortinet NSE5_FSM-6.3 - Fortinet NSE 5 - FortiSIEM 6.3 Exam
How to pass Fortinet NSE5_FMG-7.2 - Fortinet NSE 5 - FortiManager 7.2 Exam
NSE7_FSR-6.4 - Fortinet NSE 7 - FortiSOAR 6.4 Design and Development
NSE7_SDW-7.2 - Fortinet NSE 7 - SD-WAN 7.2
FCSS_ADA_AR-6.7 - FCSS - Advanced Analytics 6.7 Architect
NSE7_ATP-3.2 - Fortinet NSE 7 - Advanced Threat Protection 3.2
FCP_FCT_AD-7.4 - FCP - FortiClient EMS 7.4 Administrator
NSE6_FNC-7.2 - Fortinet NSE 6 - FortiNAC 7.2
NSE6_FNC-9.1 - Fortinet NSE 6 - FortiNAC 9.1
NSE7_OTS-7.2.0 - Fortinet NSE 7 - OT Security 7.2
FCP_FWB_AD-7.4 - FCP - FortiWeb 7.4 Administrator
NSE6_FVE-6.0 - Fortinet NSE 6 - FortiVoice 6.0
NSE6_FML-6.4 - Fortinet NSE 6 - FortiMail 6.4
Fortinet Free Access
Get Fortinet Full Access

Fortinet Free Exams
Fortinet Free Exams
Access free Fortinet exam study guides and practice tests at Examstrack. Ensure your success with top-notch preparation resources at Examstrack.