FORTICLIENT EMS 7.2 ADMINISTRATOR

What is included in the FortiClient EMS installation package?. Microsoft SQL. Oracle SQL. Mysql. Postgresql.

Which of the following overrides site categories action in FortiClient web-filter?. Web exclusion list. FortiSandbox custom URL categories. URL list. Block malicious website on AV.

An administrator installs the EMS server, what are the minimum system requirements recommended for FortiClient EMS? (Choose two.). Microsoft Windows Server 2003. 8 GB RAM. 4 GB RAM. Microsoft Windows Server 2008 R2.

View the exhibit: Which two statements about the FortiClient EMS console logs are true? (Choose two.). The FortiClient EMS administrator assigned the endpoint profile to All Groups. The FortiClient EMS administrator assigned the gateway list to All Groups. The FortiClient EMS administrator created an endpoint profile. The FortiClient EMS administrator deployed a new FortiClient installation to All Groups.

What is the function of the custom scan option on FortiClient?. It allows users to select a specific file folder to scan for threats. It scans executable files, DLLs, and drivers that are currently running, for threats. It performs a manual scan on all removable drives. It performs a full system scan including all files, executable files, DLLs, and drivers, for threats.

Which FortiClient feature is required, along with antivirus real-time protection, to block access to malicious websites?. Web filtering. Application firewall. Antiexploit. Sandbox integration.

Which component or device signs the client certificate with the UID and serial number?. FortiClient EMS. FortiAnalyzer. FortiClient. FortiGate.

Which FortiGate CLI command shows all the ZTNA IP and MAC addresses learned from FortiClient EMS?. diagnose endpoint wad-comm find-by ip-vdom. diagnose firewall dynamic list. diagnose endpoint record list. diagnose wad dev query-by uid.

What is the maximum number of files that a FortiClient antivirus is allowed to submit to FortiGuard for analysis in a day?. No limit. Five. Two. Four.

Which ZTNA component is responsible for enabling the access proxy?. ZTNA tags. ZTNA rules. ZTNA server. ZTNA firewall policy.

Which component or device shares device status information through ZTNA telemetry?. FortiClient. FortiGate. FortiGate Access Proxy. FortiClient EMS.

Which statement about FortiClient comprehensive endpoint protection is true?. It helps to safeguard systems from email spam. It helps to safeguard systems from advanced security threats, such as malware. It helps to safeguard systems from data loss. It helps to safeguard systems from DDoS.

Which two third-party tools can an administrator use to deploy FortiClient? (Choose two.). Microsoft Active Directory GPO. Microsoft SCCM. QR code generator. Microsoft Windows Installer.

In a FortiSandbox integration, what does the remediation option do?. Deny access to a file when it sees no results. Wait for FortiSandbox results before allowing files. Alert and notify only. Exclude specified files.

An administrator is required to maintain a software vulnerability on the endpoints, without showing the feature on the FortiClient dashboard. What must the administrator do to achieve this requirement?. Select the vulnerability scan feature in the deployment package, but disable the feature on the endpoint profile. Click the hide icon on the vulnerability scan tab. Use the default endpoint profile. Disable select the vulnerability scan feature in the deployment package.

An administrator deploys a FortiClient installation through the Microsoft AD group policy. After the installation is complete, all the custom configuration is missing. What could have caused this problem?. The FortiClient MST file is missing from the distribution package. The FortiClient package is not assigned to the group. The FortiClient .exe file is included in the distribution package. FortiClient does not have permission to access the distribution package.

An administrator installs FortiClient on Windows Server. What is the default behavior of real-time protection control?. Real-time protection must update AV signature database. Real-time protection is disabled. Real-time protection sends malicious files to FortiSandbox when the file is not detected locally. Real-time protection must update the signature database from FortiSandbox.

Refer to the exhibit, which shows the output of the ZTNA traffic log on FortiGate. What can you conclude from the log message?. The remote user connection does not match the explicit proxy policy. The remote user connection does not match the ZTNA server configuration. The remote user connection does not match the ZTNA firewall policy. The remote user connection does not match the ZTNA rule configuration.

What action does FortiClient anti-exploit detection take when it detects exploits?. Deletes the compromised application process. Blocks memory allocation to the compromised application process. Terminates the compromised application process. Patches the compromised application process.

Refer to the exhibit. Based on the settings shown in the exhibit, which action will FortiClient take when users try to access www facebook.com?. FortiClient will prompt a warning message to warn the user before they can access the Facebook website. FortiClient will block access to Facebook and its subdomains. FortiClient will monitor only the user’s web access to the Facebook website. FortiClient will allow access to Facebook.

Which component or device shares ZTNA tag information through Security Fabric integration?. FortiClient. FortiClient EMS. FortiGate. FortiGate Access Proxy.