A rogue administrator was accessing FortiAnalyzer without permission, and you are tasked to see what activity was performed by that rogue administrator on FortiAnalyzer. What can you do on FortiAnalyzer to accomplish this?
A.
Click FortiView and generate a report for that administrator.
B.
Click Task Monitor and view the tasks performed by that administrator.
C.
Click Log View and generate a report for that administrator.
D.
View the tasks performed by the rogue administrator in Fabric View.
The exhibit shows remoteservergroup is an authentication server group with LDAP and RADIUS servers. Which two statements express the significance of enabling Match all users on remote server when configuring a new administrator? (Choose two.)
A.
It creates a wildcard administrator using LDAP and RADIUS servers.
B.
Administrator can log in to FortiAnalyzer using their credentials on remote servers LDAP and RADIUS.
C.
Use remoteadmin from LDAP and RADIUS servers will be able to log in to FortiAnalyzer at anytime.
D.
It allows administrators to use two-factor authentication.
Which two statements are true regarding FortiAnalyzer operating modes? (Choose two.)
A.
When in collector mode, FortiAnalyzer collects logs from multiple devices and forwards these logs in the original binary format.
B.
Collector mode is the default operating mode.
C.
When in collector mode. FortiAnalyzer supports event management and reporting features.
D.
By deploying different FortiAnalyzer devices with collector and analyzer mode in a network, you can improve the overall performance of log receiving, analysis, and reporting
An administrator has moved FortiGate A from the root ADOM to ADOM1. However, the administrator is not able to generate reports for FortiGate A in ADOM1. What should the administrator do to solve this issue?
A.
Use the execute sql-local rebuild-db command to rebuild all ADOM databases.
B.
Use the execute sql-local rebuild-adom ADOM1 command to rebuild the ADOM database.
C.
Use the execute sql-report run ADOM1 command to run a report.
D.
Use the execute sql-local rebuild-adom root command to rebuild the ADOM database.
Which two statements are true regarding ADOM modes? (Choose two.)
A.
You can only change ADOM modes through CLI.
B.
In normal mode, the disk quota of the ADOM is fixed and cannot be modified, but in advance mode, the disk quota of the ADOM is flexible because new devices are added to the ADOM.
C.
In an advanced mode ADOM. you can assign FortiGate VDOMs from a single FortiGate device to multiple FortiAnalyzer ADOMs.
An administrator has configured the following settings: config system fortiview settings set resolve-ip enable end What is the significance of executing this command?
A.
Use this command only if the source IP addresses are not resolved on FortiGate.
B.
It resolves the source and destination IP addresses to a hostname in FortiView on FortiAnalyzer.
C.
You must configure local DNS servers on FortiGate for this command to resolve IP addresses on Forti Analyzer.
D.
It resolves the destination IP address to a hostname in FortiView on FortiAnalyzer.
Which two statements are true regarding log fetching on FortiAnalyzer? (Choose two.)
A.
A FortiAnalyzer device can perform either the fetch server or client role, and it can perform two roles at the same time with the same FortiAnalyzer devices at the other end.
B.
Log fetching can be done only on two FortiAnalyzer devices that are running the same firmware version.
C.
Log fetching allows the administrator to fetch analytics logs from another FortiAnalyzer for redundancy.
D.
Log fetching allows the administrator to run queries and reports against historical data by retrieving archived logs from one FortiAnalyzer device and sending them to another FortiAnalyzer device.