Exam series: NSE4_FGT-7.0
Number of questions: 60
Exam time: 105 minutes
Language: English and Japanese
Product version: FortiOS 7.0
Status: Available
Exam details: exam description
NSE 4 Certification
The Network Security Professiona* designation identifies your ability to configure, install, and manage the day-to-day configuration, monitoring, and operation of FortiGate to support specific corporate network security policies. Visit the
Fortinet NSE Certification Program page for information about certification requirements.
Fortinet NSE 4—FortiOS 7.0
The Fortinet NSE 4—FortiOS 7.0 exam is part of the NSE 4 Network Security Professional program, and recognizesthe successful candidate’s knowledge of and expertise with FortiGate.
The exam tests applied knowledge of FortiGate configuration, operation, and day-to-day administration, and includes operational scenarios, configuration extracts, and troubleshooting captures.
Audience
The Fortinet NSE 4—FortiOS 7.0 exam is intended for network and security professionals responsible for the configuration and administration of firewal* solutions in an enterprise network security infrastructure.
Exam Details
Exam name Fortinet NSE 4—FortiOS 7.0
Exam series NSE4_FGT-7.0
Time allowed 105 minutes
Exam Description
Exam questions 60 multiple-choice questions
Scoring Pass or fail, a score report is available from your Pearson VUE account
Language English and Japanese
Product version FortiOS 7.0
Exam Topics
Successful candidates have applied knowledge and skills in the following areas and tasks:
* FortiGate deployment
* Perform initial configuration
* Implement the Fortinet Security Fabric
* Configure log settings and diagnose problems using the logs
* Describe and configure VDOMs to split a FortiGate into multiple virtual devices
* Identify and configure different operation modes for an FGCP HA cluster
* Diagnose resource and connectivity problems
* Firewall and authentication
* Identify and configure how firewall policy NAT and central NAT works
* Identify and configure different methods of firewall authentication
* Explain FSSO deployment and configuration
* Content inspection
* Describe and inspect encrypted traffic using certificates
* Identify FortiGate inspection modes and configure web and DNS filtering
* Configure application control to monitor and control network applications
* Explain and configure antivirus scanning modes to neutralize malware threats
* Configure IPS, DoS, and WAF to protect the network from hacking and DDoS attacks
* Routing and Layer 2 switching
* Configure and route packets using static and policy-based routes
* Configure SD-WAN to load balance traffic between multiple WAN links effectively
* Configure FortiGate interfaces or VDOMs to operate as Layer 2 devices
* VPN
* Configure and implement different SSL-VPN modes to provide secure access to the private network
* Implement a meshed or partially redundant IPsec VPN
Training Resources
The following resources are recommended for attaining the knowledge and skills that are covered on the exam. The recommended training is available as a foundation for exam preparation. In addition to training, candidates are
strongly encouraged to have hands-on experience with the exam topics and objectives.
NSE Training Institute Courses
* NSE 4 FortiGate Security 7.0
* NSE 4 FortiGate Infrastructure 7.0
Other Resources
* FortiOS 7.0—Administration Guide
* FortiOS 7.0—New Features Guide
Experience
* Minimum of six months of hands-on experience with FortiGate
QUESTION 1
Which two statements about FortiGate FSSO agentless polling mode are true? (Choose two.)
A. FortiGate uses the AD server as the collector agent.
B. FortiGate uses the SMB protocol to read the event viewer logs from the DCs.
C. FortiGate does not support workstation check.
D. FortiGate directs the collector agent to use a remote LDAP server.
Answer: B,D
QUESTION 2
FortiGuard categories can be overridden and defined in different categories. To create a web rating override
for example.com home page, the override must be configured using a specific syntax.
Which two syntaxes are correct to configure web rating override for the home page? (Choose two.)
A. www.exaple.com
B. www.example.com/index.html
C. example.com
D. www.example.com:443
Answer: A,C
QUESTION 3
Which three options are the remote log storage options you can configure on FortiGate? (Choose three.)
A. FortiSandbox
B. FortiCloud
C. FortiSIEM
D. FortiCache
E. ForiAnalyzer
Answer: B,C,E
Examkingdom Fortinet NSE4_FGT-7.0 Exam pdf, Certkingdom Fortinet NSE4_FGT-7.0 PDF
Best Fortinet NSE4_FGT-7.0 Certification, Fortinet NSE4_FGT-7.0 Training at certkingdom.com