[2024年11月18日]FCP_FWB_AD-7.4問題集PDFとテストエンジン 試験問題 [Q16-Q39]

Share

[2024年11月18日]FCP_FWB_AD-7.4問題集PDFとテストエンジン 試験問題

検証済みのFCP_FWB_AD-7.4テスト問題集と解答で正確な122問題解答あります

質問 # 16
How can you troubleshoot encryption-related issues in a web application? (Select all that apply)

  • A. Reviewing SSL/TLS handshake logs
  • B. Testing SSL connections from different devices
  • C. Disabling all encryption protocols
  • D. Checking SSL certificate expiration

正解:A、B、D


質問 # 17
What is the purpose of a CAPTCHA in web application security?

  • A. Preventing automated form submissions by bots
  • B. Securing API endpoints
  • C. Encrypting data in transit
  • D. Authenticating users

正解:A


質問 # 18
When configuring HTTP content routing, which factors should be considered for routing decisions?
(Select all that apply)

  • A. Source IP address
  • B. User-agent header
  • C. HTTP request method
  • D. Destination port number

正解:B、C


質問 # 19
How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

  • A. FortiWeb must be set for Transparent Mode
  • B. You must enable the "Use" X-Forwarded-For: option.
  • C. No special configuration required
  • D. You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.

正解:D


質問 # 20
You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.
Which is true about the solution?

  • A. Static or policy-based routes are not required.
  • B. To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app's traffic among all members of the server farm.
  • C. You must put the single web server into a server pool in order to use it with HTTP content routing.
  • D. The server policy applies the same protection profile to all its protected web apps.

正解:B


質問 # 21
When configuring access control for a web application, which methods can be used to enforce security? (Select all that apply)

  • A. Two-factor authentication (2FA)
  • B. Role-based access control (RBAC)
  • C. Captcha verification
  • D. IP whitelisting

正解:B、D


質問 # 22
Which is true about HTTPS on FortiWeb? (Choose three.)

  • A. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.
  • B. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
  • C. In true transparent mode, the TLS session terminator is a protected web server.
  • D. After enabling HSTS, redirects to HTTPS are no longer necessary.
  • E. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.

正解:A、B、C


質問 # 23
What is the primary goal of bot detection and mitigation in web application security?

  • A. Ensuring user privacy
  • B. Accelerating web application performance
  • C. Identifying and blocking malicious bots
  • D. Enhancing user authentication

正解:C


質問 # 24
Which two configurations are compatible for Wireless Single Sign-On (WSSO)? (Choose two.)

  • A. A VAP configured for captive portal authentication
  • B. A VAP configured to authenticate locally on FortiGate
  • C. A VAP configured to authenticate using a radius server
  • D. A VAP configured for WPA2 or 3 Enterprise

正解:C、D


質問 # 25
Examine the following code snippet:
servers:
- url: 'http://petstore.swagger.io/v1'
paths:
/pets:
get:
summary: List all pets
operationId: listPets
tags:
- pets
parameters:
- name: limit
in: query
description: How many items to return at one time (max 100)
required: true
schema:
$ref: '#/components/schemas/ref'
What is this a snippet from?

  • A. An XML schema file
  • B. An HTTP request restriction file
  • C. An API schema file
  • D. An API machine learning (ML) configuration file

正解:C


質問 # 26
Which three statements about HTTPS on FortiWeb are true? (Choose three.)

  • A. In reverse proxy mode, FortiWeb can re-encrypt connections to the protected web servers.
  • B. In transparent inspection mode, FortiWeb supports the same cipher suites as reverse proxy mode.
  • C. For TLS inspection, you must upload the server certificate and key to FortiWeb.
  • D. You can choose which SSL/TLS protocol versions are supported by FortiWeb when clients connect to a virtual server.

正解:A、C、D


質問 # 27
What is the primary purpose of configuring content compression in application delivery? (Select all that apply)

  • A. Preventing unauthorized access to web pages
  • B. Enhancing security by encrypting content
  • C. Reducing bandwidth consumption
  • D. Accelerating content loading for users

正解:C、D


質問 # 28
What are two advantages of using the URL rewriting and redirecting feature on FortiWeb? (Choose two.)

  • A. It enhances security by redirecting all requests to a private IP address.
  • B. It reduces the number of requests, which reduces the risk of man-in-the-middle attacks.
  • C. It reduces server load by reducing the number of clients being served by a single web server.
  • D. It prevents the disclosure of underlying technology to clients.

正解:B、D


質問 # 29
Which of the following is a common challenge when implementing bot mitigation techniques?

  • A. Incompatibility with web browsers
  • B. Lack of support for mobile devices
  • C. Difficulty in distinguishing between legitimate and malicious bots
  • D. Increased server response times

正解:C


質問 # 30
When configuring access control methods for web application users, which options should be considered for tracking and auditing user actions? (Select all that apply)

  • A. Error logs
  • B. Session logs
  • C. Authentication logs
  • D. Web server logs

正解:B、C、D


質問 # 31
In which operation mode does FortiWeb offer both the ability to offload SSL as well as re-encrypt SSL?

  • A. True transparent proxy
  • B. Transparent inspection
  • C. Reverse proxy
  • D. Offline protection

正解:C


質問 # 32
When configuring API protection, what security measure is commonly used to verify the identity of clients making API requests?

  • A. OAuth 2.0 tokens
  • B. HTTP referrer headers
  • C. Session cookies
  • D. IP whitelisting

正解:A


質問 # 33
Which of the following are common SSL/TLS encryption-related issues that can be encountered during web application deployment? (Select all that apply)

  • A. Mixed content warnings
  • B. Weak encryption ciphers
  • C. Insecure session management
  • D. Expired SSL certificates

正解:A、B、D


質問 # 34
When configuring Auto TX Power control on an AP radio, which two statements best describe how the radio responds? (Choose two.)

  • A. When the AP detects PF Interference from an unknown source such as a cordless phone with a signal stronger that -70 dBm, it will increase its transmission power until it reaches the maximum configured TX power limit.
  • B. When the AP detects any other wireless signal stronger that -70 dBm, it will reduce its transmission power until it reaches the minimum configured TX power limit.
  • C. When the AP detects any wireless client signal weaker than -70 dBm, it will reduce its transmission power until it reaches the maximum configured TX power limit.
  • D. When the AP detects any interference from a trusted neighboring AP stronger that -70 dBm, it will reduce its transmission power until it reaches the minimum configured TX power limit.

正解:B、D


質問 # 35
Which of the following are common reasons for configuring HTTP redirection in application delivery?
(Select all that apply)

  • A. Enforcing HTTPS for secure communication
  • B. Blocking specific IP addresses
  • C. Redirecting users to a different website
  • D. Load balancing traffic

正解:A、C


質問 # 36
In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

  • A. non-Matching traffic is held in buffer
  • B. Non-matching traffic is Denied
  • C. Non-matching traffic is rerouted to FortiGate
  • D. Non-matching traffic is allowed

正解:B


質問 # 37
Which operation mode requires additional configuration in order to allow FTP traffic into your web server?

  • A. True transparent proxy
  • B. Transparent inspection
  • C. Reverse proxy
  • D. Offline protection

正解:C


質問 # 38
Which of the following is a critical system setting that should be configured during FortiWeb deployment?

  • A. System time synchronization
  • B. Default web filtering policies
  • C. Email notifications
  • D. DNS server settings

正解:A


質問 # 39
......

Fortinet FCP_FWB_AD-7.4テストエンジンPDFで完全版無料問題集:https://jp.fast2test.com/FCP_FWB_AD-7.4-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어