FCP - FortiWeb 7.4 Administrator (FCP_FWB_AD-7.4) Free Practice Test

Question 1

What can an administrator do if a client has been incorrectly period blocked?

A. Nothing, it is not possible to override a period block.

B. Manually release the ID address from the temporary blacklist.

C. Disconnect the client from the network.

D. Force a new IP address to the client.

Correct Answer: B

Question 2

What can a FortiWeb administrator do if a client has been incorrectly period blocked?

A. Disable and re-enable the server policy.

B. Allow the period block to expire on its own, you cannot override it.

C. Force a new IP address to the client.

D. Manually release the IP address from the blocklist.

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

What is a recommended step in troubleshooting threat detection and mitigation issues in a web application?

A. Allowing unrestricted access to the application temporarily

B. Ignoring false positives in the security logs

C. Reviewing logs and alerts for unusual patterns

D. Disabling all security features temporarily

Correct Answer: C

Question 4

Which high availability mode is commonly used to integrate with a traffic distributer like FortiADC?

A. Active-Passive

B. Load sharing

C. Cold standby

D. Active-Active

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 5

What is the primary goal of bot detection and mitigation in web application security?

A. Ensuring user privacy

B. Accelerating web application performance

C. Enhancing user authentication

D. Identifying and blocking malicious bots

Correct Answer: D

Question 6

When FortiWeb triggers a redirect action, which two HTTP codes does it send to the client to inform the browser of the new URL? (Choose two.)

A. 301

B. 302

C. 404

D. 403

Correct Answer: A,B

Question 7

An attacker attempts to send an SQL injection attack containing the known attack string 'root'; -- through an API call.
Which FortiWeb inspection feature will be able to detect this attack the quickest?

A. ML-based API protection-threat detection

B. Machine learning (ML)-based API protection-anomaly detection

C. API gateway rule

D. Known signatures

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 8

What is one of the key benefits of the FortiGuard IP reputation feature?

A. It maintains a list of private IP addresses.

B. It is updated once per year.

C. It maintains a list of public IPs with a bad reputation for participating in attacks.

D. It provides a document of IP addresses that are suspect, so that administrators can manually update their blacklists.

Correct Answer: C

Welcome to TestSimulate

Fortinet FCP - FortiWeb 7.4 Administrator (FCP_FWB_AD-7.4) Free Practice Test