Which methods can be used to submit files to FortiSandbox for inspection? (Choose two.)
A. File shares
B. FTP upload
C. SFTP upload
D. JSON API
Which protocols can a FortiSandbox inspect when is deployed in sniffer mode? (Choose two.)
A. MAPI
B. FTPS
C. HTTP
D. POP3
When does a FortiSandbox categorize a file as suspicious?
A. When the file is detected as known greyware
B. When the file matches an antivirus signature that might detect false positives
C. When the file matches a signature in the extended antivirus database
D. When the file is not detected as a known malware, but it has some of the same behaviors as malware
What is the minimum FortiAnalyzer firmware version that supports FortiSandbox device registration?
A. 5.0.6
B. 5.0.11
C. 5.0.8
D. 5.2.1
FortiGate is configured to send suspicious files to a FortiSandbox for in-line inspection. The administrator
creates a new VDOM, and then generates some traffic so what the new VDOM sends a file to the
FortiSandbox for the first time.
Which is true regarding this scenario?
A. FortiSandbox will store the file, but not inspect it until the administrator manually authorizes the new VDOM.
B. Before generating traffic, the administrator can push the VDOM configuration from the FortiGate to the FortiSandbox. Then when FortiSandbox receives the file, FortiSandbox will inspect the file.
C. FortiSandbox can be pre-configured to automatically authorize the new VDOM and inspect the file.
D. FortiSandbox will store the file, but not inspect it until the administrator manually adds the new VDOM to the FortiSandbox configuration.
If FortiSandbox connects to FortiGuard through a web proxy server, which FortiSandbox interface must have access to the proxy server?
A. port3
B. port2
C. port1
D. port4
Which FortiGate process sends files to FortiSandbox for inspection?
A. scanunit
B. fortisandboxd
C. miglogd
D. quarantine
Which are true about activating the Microsoft Office license in a FortiSandbox? (Choose two.)
A. Happens simultaneously with the activation of the Windows licenses
B. Does not require Internet access
C. Requires that you download a license file from the Fortinet support website
D. Requires you to enter the key in the FortiSandbox GUI
Which protocols are supported for archiving scan job reports? (Choose two.)
A. CIFS
B. NFSv2
C. SMB
D. FTP
The Windows licenses in a FortiSandbox could be locked because they have exceeded the maximum
number of allowed activations.
What should the administrator do to fix the problem?
A. Contact Microsoft support.
B. Restore a backup of the configuration taken before the licenses became locked.
C. Reinstall the license files.
D. Contact Fortinet support.
