Weekend Sale 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sale65best

Free Fortinet NSE5_FMG-7.2 Practice Exam with Questions & Answers | Set: 3

Questions 21

View the following exhibit.

NSE5_FMG-7.2 Question 21

Which statement is true regarding this failed installation log?

Options:
A.

Policy ID 2 is installed without a source address

B.

Policy ID 2 will not be installed

C.

Policy ID 2 is installed in disabled state

D.

Policy ID 2 is installed without a source device

Fortinet NSE5_FMG-7.2 Premium Access
Questions 22

In addition to the default ADOMs, an administrator has created a new ADOM named Training for FortiGate devices. The administrator sent a device registration to FortiManager from a remote FortiGate. Which one of the following statements is true?

Options:
A.

The FortiGate will be added automatically to the default ADOM named FortiGate.

B.

The FortiGate will be automatically added to the Training ADOM.

C.

By default, the unregistered FortiGate will appear in the root ADOM.

D.

The FortiManager administrator must add the unregistered device manually to the unregistered device

manually to the Training ADOM using the Add Device wizard

Questions 23

In the event that the primary FortiManager fails, which of the following actions must be performed to return the FortiManager HA to a working state?

Options:
A.

Secondary device with highest priority will automatically be promoted to the primary role, and manually

reconfigure all other secondary devices to point to the new primary device

B.

Reboot one of the secondary devices to promote it automatically to the primary role, and reconfigure all other secondary devices to point to the new primary device.

C.

Manually promote one of the secondary devices to the primary role, and reconfigure all other secondary devices to point to the new primary device.

D.

FortiManager HA state transition is transparent to administrators and does not require any reconfiguration.

Questions 24

An administrator, Trainer, who is assigned the Super_User profile, is trying to approve a workflow session that was submitted by another administrator, Student. However, Trainer is unable to approve the workflow session.

What can prevent an admin account that has Super_User rights over the device from approving a workflow session?

NSE5_FMG-7.2 Question 24

Options:
A.

Trainer is not a part of workflow approval group

B.

Trainer does not have full rights over this ADOM

C.

Trainer must close Student’s workflow session before approving the request

D.

Student, who submitted the workflow session, must first self-approve the request

Questions 25

View the following exhibit.

NSE5_FMG-7.2 Question 25

When using Install Config option to install configuration changes to managed FortiGate, which of the following statements are true? (Choose two.)

Options:
A.

Once initiated, the install process cannot be canceled and changes will be installed on the managed device

B.

Will not create new revision in the revision history

C.

Installs device-level changes to FortiGate without launching the Install Wizard

D.

Provides the option to preview configuration changes prior to installing them

Questions 26

Refer to the exhibit showing a Download Import Report.

Why is it failing to import firewall policy ID 1?

Options:
A.

Policy ID 1 is configured from the interface any to port6. FortiManager rejects the request to import this policy because the any interface does not exist on FortiManager.

B.

The address object used in policy ID 1 already exists in the ADOM database with any as the interface association, and conflicts with the address object interface association locally on FortiGate.

C.

Policy ID 1 does not have the ADOM Interface mapping configured on FortiManager.

D.

Policy ID 1 for this managed FortiGate already exists on FortiManager in the policy package named Remote-FortiGate.

Questions 27

Refer to the exhibit.

NSE5_FMG-7.2 Question 27

An administrator is about to add the FortiGate device to FortiManager using the discovery process FortiManager is operating behind a NAT device, and the administrator configured the FortiManager NATed IP address under the FortiManager system administration settings

What is the expected result?

Options:
A.

During discovery FortiManager sets trie FortiManager NATed IP address on FortiGate

B.

During discovery FortiManager sets both tie FortiManager NATed IP address and NAT device IP address on FortiGate

C.

During discovery FortiManager sets the NATed device IP address on FortiGate

D.

During discovery FortiManager uses only the FortiGate serial number to establish the connection

Questions 28

Push updates are failing on a FortiGate device that is located behind a NAT device Which two settings should the administrator check? (Choose two.)

Options:
A.

That the virtual IP address and correct ports are set on the NAT device

B.

That the NAT device IP address and correct ports are configured on FortiManager

C.

That the external IP address on the NAT device is set to DHCP and configured with the virtual IP

D.

That the override server IP address is set on FortiManager and the NAT device

Questions 29

What is the purpose of the Policy Check feature on FortiManager?

Options:
A.

It provides recommendations for optimizing policies in a policy package.

B.

It provides recommendations to combine similar policy packages within an ADOM into one single policy package.

C.

It compares the policy packages with the revision history, and updates policy packages in the ADOM database.

D.

It merges and creates dynamic mappings for duplicate objects used in a policy package.

Questions 30

In the event that one of the secondary FortiManager devices fails, which action must be performed to return the FortiManager HA manual mode to a working state?

Options:
A.

The FortiManaqer HA state transition is transparent to administrators and does not require any reconfiguration.

B.

Manually promote one of the working secondary devices to the primary role, and reboot the old primary device to remove the peer IP of the failed device.

C.

Reconfigure the primary device to remove the peer IP of the failed device.

D.

Reboot the failed device to remove its IP from the primary device.

Exam Code: NSE5_FMG-7.2
Certification Provider: Fortinet
Exam Name: Fortinet NSE 5 - FortiManager 7.2
Last Update: Sep 14, 2025
Questions: 101

Fortinet Related Exams

How to pass Fortinet NSE5_FCT-7.0 - NSE5_FCT-7.0 NSE 5 - FortiClient EMS 7.0 Exam
How to pass Fortinet NSE5_EDR-5.0 - Fortinet NSE 5 - FortiEDR 5.0 Exam Exam
How to pass Fortinet NSE5_FSM-6.3 - Fortinet NSE 5 - FortiSIEM 6.3 Exam
How to pass Fortinet NSE5_FAZ-7.2 - Fortinet NSE 5 - FortiAnalyzer 7.2 Exam
FCSS_SDW_AR-7.6 - FCSS - SD-WAN 7.6 Architect
NSE7_NST-7.2 - Fortinet NSE 7 - Network Security 7.2 Support Engineer
FCSS_SOC_AN-7.4 - FCSS - Security Operations 7.4 Analyst
FCSS_NST_SE-7.4 - FCSS - Network Security 7.4 Support Engineer
EMEA-Advanced-Support - Fortinet EMEA Advanced Support Exam
FCSS_SDW_AR-7.4 - FCSS - SD-WAN 7.4 Architect
NSE6_FNC-7.2 - Fortinet NSE 6 - FortiNAC 7.2
NSE6_FSR-7.3 - Fortinet NSE 6 - FortiSOAR 7.3 Administrator
FCSS_CDS_AR-7.6 - FCSS - Public Cloud Security 7.6 Architect
FCSS_EFW_AD-7.4 - FCSS - Enterprise Firewall 7.4 Administrator
NSE7_OTS-7.2 - Fortinet NSE 7 - OT Security 7.2
Fortinet Free Access
Get Fortinet Full Access

Fortinet Free Exams
Fortinet Free Exams
Access free Fortinet exam study guides and practice tests at Examstrack. Ensure your success with top-notch preparation resources at Examstrack.