FCSS_EFW_AD-7.4 Online Practice Questions

Home / Fortinet / FCSS_EFW_AD-7.4

Latest FCSS_EFW_AD-7.4 Exam Practice Questions

The practice questions for FCSS_EFW_AD-7.4 exam was last updated on 2025-05-06 .

Viewing page 1 out of 18 pages.

Viewing questions 1 out of 93 questions.

Question#1

An administrator wants to capture encrypted phase 2 traffic between two FortiGate devices using the built-in sniffer.
If the administrator knows that there is no NAT device located between both FortiGate devices, which command should the administrator run?

A. diagnose sniffer packet any 'ah'
B. diagnose sniffer packet any 'ip proto 50'
C. diagnose sniffer packet any 'udp port 4500'
D. diagnose sniffer packet any 'udp port 500'

Question#2

Two independent FortiGate HA clusters are connected to the same broadcast domain. The administrator has reported that both clusters are using the same HA virtual MAC address. This creates a duplicated MAC address problem in the network.
What HA setting must be changed in one of the HA clusters to fix the problem?

A. Group I
B. Group name.
C. Session pickup.
D. Gratuitous ARPs.

Question#3

An LDAP user cannot authenticate against a FortiGate device.
Examine the real time debug output shown in the exhibit when the user attempted the authentication; then answer the question below.







Based on the output in the exhibit, what can cause this authentication problem?

A. The FortiGate has been configured with the wrong password for the LDAP administrator.
B. User student is using a wrong password.
C. User student is not found in the LDAP server.
D. The FortiGate has been configured with the wrong authentication schema.

Question#4

View the exhibit, which contains the output of a real-time debug, and then answer the question below.



Which one of the following statements describes why the update is failing?

A. The update should be using port 53 or port 8888, instead of port 443.
B. FortiGate is unable to resolve the required FQDN (service.fortiguard.net) for AV and IPS updates.
C. FortiGate is unable to establish a TCP connection with FD
D. The administrator should use the execute update-wf command instead.

Question#5

View the exhibit, which contains the output of a debug command, and then answer the question below.



Which of the following statements about the exhibit are true? (Choose two.)

A. In the network on port4, two OSPF routers are down
B. Port4 is connected to the OSPF backbone area.
C. The local FortiGate’s OSPF router ID is 0.0.0.4
D. The local FortiGate has been elected as the OSPF backup designated router.

Exam Code: FCSS_EFW_AD-7.4Q & A: 267 Q&AsUpdated:  2025-05-06

 Get All FCSS_EFW_AD-7.4 Q&As

Top 20 Exams

CertQuestionsBank doesn't offer Real Microsoft, Amazon, Cisco Exam Questions. All CertQuestionsBank content is sourced from the Internet.

Important Links

Know Us

Follow Us

Copyright © 2025 CertQuestionsBank NETWORK CO.,LIMITED. All Rights Reserved.