What happens when a log file saved on FortiAnalyzer disks reaches the size specified in the device log settings?
A. The log file is stored as a raw log and is available for analytic support.
B. The log file rolls over and is archived.
C. The log file is purged from the database.
D. The log file is overwritten.
How do you restrict an administrator's access to a subset of your organization's ADOMs?
A. Set the ADOM mode to Advanced
B. Assign the ADOMs to the administrator's account
C. Configure trusted hosts
D. Assign the default Super_User administrator profile
In order for FortiAnalyzer to collect logs from a FortiGate device, what configuration is required? (Choose two.)
A. Remote logging must be enabled on FortiGate
B. Log encryption must be enabled
C. ADOMs must be enabled
D. FortiGate must be registered with FortiAnalyzer
What can the CLI command # diagnose test application oftpd 3 help you to determine?
A. What devices and IP addresses are connecting to FortiAnalyzer
B. What logs, if any, are reaching FortiAnalyzer
C. What ADOMs are enabled and configured
D. What devices are registered and unregistered
What FortiView tool can you use to automatically build a dataset and chart based on a filtered search result?
A. Chart Builder
B. Export to Report Chart
C. Dataset Library
D. Custom View
View the exhibit.
Why is the total quota less than the total system storage?
A. 3.6% of the system storage is already being used.
B. Some space is reserved for system use, such as storage of compression files, upload files, and temporary report files
C. The oftpd process has not archived the logs yet
D. The logfiled process is just estimating the total quota
If you upgrade your FortiAnalyzer firmware, what report elements can be affected?
A. Output profiles
B. Report settings
C. Report scheduling
D. Custom datasets
For proper log correlation between the logging devices and FortiAnalyzer, FortiAnalyzer and all registered devices should:
A. Use DNS
B. Use host name resolution
C. Use real-time forwarding
D. Use an NTP server
How can you configure FortiAnalyzer to permit administrator logins from only specific locations?
A. Use static routes
B. Use administrative profiles
C. Use trusted hosts
D. Use secure protocols
Logs are being deleted from one of your ADOMs earlier than the configured setting for archiving in your data policy.
What is the most likely problem?
A. The total disk space is insufficient and you need to add other disk.
B. CPU resources are too high.
C. The ADOM disk quota is set too low based on log rates.
D. Logs in that ADOM are being forwarded in real-time to another FortiAnalyzer device.
