
[2024年11月18日]FCP_FWB_AD-7.4問題集PDFとテストエンジン 試験問題
検証済みのFCP_FWB_AD-7.4テスト問題集と解答で正確な122問題解答あります
質問 # 16
How can you troubleshoot encryption-related issues in a web application? (Select all that apply)
- A. Reviewing SSL/TLS handshake logs
- B. Testing SSL connections from different devices
- C. Disabling all encryption protocols
- D. Checking SSL certificate expiration
正解:A、B、D
質問 # 17
What is the purpose of a CAPTCHA in web application security?
- A. Preventing automated form submissions by bots
- B. Securing API endpoints
- C. Encrypting data in transit
- D. Authenticating users
正解:A
質問 # 18
When configuring HTTP content routing, which factors should be considered for routing decisions?
(Select all that apply)
- A. Source IP address
- B. User-agent header
- C. HTTP request method
- D. Destination port number
正解:B、C
質問 # 19
How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?
- A. FortiWeb must be set for Transparent Mode
- B. You must enable the "Use" X-Forwarded-For: option.
- C. No special configuration required
- D. You must enable "Add" X-Forwarded-For: instead of the "Use" X-Forwarded-For: option.
正解:D
質問 # 20
You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.
Which is true about the solution?
- A. Static or policy-based routes are not required.
- B. To achieve HTTP content routing, you must chain policies: the first policy accepts all traffic, and forwards requests for web app A to the virtual server for policy A. It also forwards requests for web app B to the virtual server for policy B. Policy A and Policy B apply their app-specific protection profiles, and then distribute that app's traffic among all members of the server farm.
- C. You must put the single web server into a server pool in order to use it with HTTP content routing.
- D. The server policy applies the same protection profile to all its protected web apps.
正解:B
質問 # 21
When configuring access control for a web application, which methods can be used to enforce security? (Select all that apply)
- A. Two-factor authentication (2FA)
- B. Role-based access control (RBAC)
- C. Captcha verification
- D. IP whitelisting
正解:B、D
質問 # 22
Which is true about HTTPS on FortiWeb? (Choose three.)
- A. For SNI, you select the certificate that FortiWeb will present in the server pool, not in the server policy.
- B. In transparent inspection mode, you select which certificate that FortiWeb will present in the server pool, not in the server policy.
- C. In true transparent mode, the TLS session terminator is a protected web server.
- D. After enabling HSTS, redirects to HTTPS are no longer necessary.
- E. Enabling RC4 protects against the BEAST attack, but is not recommended if you configure FortiWeb to only offer TLS 1.2.
正解:A、B、C
質問 # 23
What is the primary goal of bot detection and mitigation in web application security?
- A. Ensuring user privacy
- B. Accelerating web application performance
- C. Identifying and blocking malicious bots
- D. Enhancing user authentication
正解:C
質問 # 24
Which two configurations are compatible for Wireless Single Sign-On (WSSO)? (Choose two.)
- A. A VAP configured for captive portal authentication
- B. A VAP configured to authenticate locally on FortiGate
- C. A VAP configured to authenticate using a radius server
- D. A VAP configured for WPA2 or 3 Enterprise
正解:C、D
質問 # 25
Examine the following code snippet:
servers:
- url: 'http://petstore.swagger.io/v1'
paths:
/pets:
get:
summary: List all pets
operationId: listPets
tags:
- pets
parameters:
- name: limit
in: query
description: How many items to return at one time (max 100)
required: true
schema:
$ref: '#/components/schemas/ref'
What is this a snippet from?
- A. An XML schema file
- B. An HTTP request restriction file
- C. An API schema file
- D. An API machine learning (ML) configuration file
正解:C
質問 # 26
Which three statements about HTTPS on FortiWeb are true? (Choose three.)
- A. In reverse proxy mode, FortiWeb can re-encrypt connections to the protected web servers.
- B. In transparent inspection mode, FortiWeb supports the same cipher suites as reverse proxy mode.
- C. For TLS inspection, you must upload the server certificate and key to FortiWeb.
- D. You can choose which SSL/TLS protocol versions are supported by FortiWeb when clients connect to a virtual server.
正解:A、C、D
質問 # 27
What is the primary purpose of configuring content compression in application delivery? (Select all that apply)
- A. Preventing unauthorized access to web pages
- B. Enhancing security by encrypting content
- C. Reducing bandwidth consumption
- D. Accelerating content loading for users
正解:C、D
質問 # 28
What are two advantages of using the URL rewriting and redirecting feature on FortiWeb? (Choose two.)
- A. It enhances security by redirecting all requests to a private IP address.
- B. It reduces the number of requests, which reduces the risk of man-in-the-middle attacks.
- C. It reduces server load by reducing the number of clients being served by a single web server.
- D. It prevents the disclosure of underlying technology to clients.
正解:B、D
質問 # 29
Which of the following is a common challenge when implementing bot mitigation techniques?
- A. Incompatibility with web browsers
- B. Lack of support for mobile devices
- C. Difficulty in distinguishing between legitimate and malicious bots
- D. Increased server response times
正解:C
質問 # 30
When configuring access control methods for web application users, which options should be considered for tracking and auditing user actions? (Select all that apply)
- A. Error logs
- B. Session logs
- C. Authentication logs
- D. Web server logs
正解:B、C、D
質問 # 31
In which operation mode does FortiWeb offer both the ability to offload SSL as well as re-encrypt SSL?
- A. True transparent proxy
- B. Transparent inspection
- C. Reverse proxy
- D. Offline protection
正解:C
質問 # 32
When configuring API protection, what security measure is commonly used to verify the identity of clients making API requests?
- A. OAuth 2.0 tokens
- B. HTTP referrer headers
- C. Session cookies
- D. IP whitelisting
正解:A
質問 # 33
Which of the following are common SSL/TLS encryption-related issues that can be encountered during web application deployment? (Select all that apply)
- A. Mixed content warnings
- B. Weak encryption ciphers
- C. Insecure session management
- D. Expired SSL certificates
正解:A、B、D
質問 # 34
When configuring Auto TX Power control on an AP radio, which two statements best describe how the radio responds? (Choose two.)
- A. When the AP detects PF Interference from an unknown source such as a cordless phone with a signal stronger that -70 dBm, it will increase its transmission power until it reaches the maximum configured TX power limit.
- B. When the AP detects any other wireless signal stronger that -70 dBm, it will reduce its transmission power until it reaches the minimum configured TX power limit.
- C. When the AP detects any wireless client signal weaker than -70 dBm, it will reduce its transmission power until it reaches the maximum configured TX power limit.
- D. When the AP detects any interference from a trusted neighboring AP stronger that -70 dBm, it will reduce its transmission power until it reaches the minimum configured TX power limit.
正解:B、D
質問 # 35
Which of the following are common reasons for configuring HTTP redirection in application delivery?
(Select all that apply)
- A. Enforcing HTTPS for secure communication
- B. Blocking specific IP addresses
- C. Redirecting users to a different website
- D. Load balancing traffic
正解:A、C
質問 # 36
In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?
- A. non-Matching traffic is held in buffer
- B. Non-matching traffic is Denied
- C. Non-matching traffic is rerouted to FortiGate
- D. Non-matching traffic is allowed
正解:B
質問 # 37
Which operation mode requires additional configuration in order to allow FTP traffic into your web server?
- A. True transparent proxy
- B. Transparent inspection
- C. Reverse proxy
- D. Offline protection
正解:C
質問 # 38
Which of the following is a critical system setting that should be configured during FortiWeb deployment?
- A. System time synchronization
- B. Default web filtering policies
- C. Email notifications
- D. DNS server settings
正解:A
質問 # 39
......
Fortinet FCP_FWB_AD-7.4テストエンジンPDFで完全版無料問題集:https://jp.fast2test.com/FCP_FWB_AD-7.4-premium-file.html