Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors
  1. Home
  2. Fortinet
  3. FCP_FMG_AD-7.6

Fortinet FCP_FMG_AD-7.6 Exam (page: 2)
Fortinet FCP - FortiManager 7.6 Administrator
Updated on: 31-Mar-2026

Viewing Page 2 of 6
FCP_FMG_AD-7.6 PDF 62 Questions

Which is recommended when you are managing a high volume of logs in your network?

  1. Store logs on FortiManager and use FortiView.
  2. Add and manage FortiAnalyzer from FortiManager.
  3. Enable advanced ADOM mode on FortiManager.
  4. Forward logs from FortiAnalyzer to FortiManager daily.

Answer(s): B

Explanation:

Adding and managing FortiAnalyzer from FortiManager is recommended for handling a high volume of logs, as FortiAnalyzer is designed specifically for centralized log management, analysis, and reporting, which offloads this workload from FortiManager.



While attempting to push a NetFlow configuration script through the FortiManager policy package:
an administrator encounters an error stating that an object is unrecognized in line 4.



What must the administrator do to successfully apply the NetFlow configuration script and avoid the object unrecognized error?

  1. Make sure the user running the script has full access to the VDOM--AGEUSR.
  2. Run the script on the device database.
  3. Use metadata variables if they use VDOMs in the script.
  4. Create a normalized interface on the policy layer before running the script.

Answer(s): C

Explanation:

When using scripts that reference VDOM-specific objects, such as interfaces, in FortiManager, metadata variables must be used to correctly map those objects per VDOM. This prevents "object unrecognized" errors during script execution.



What is the best explanation of how FortiManager helps with mass provisioning?

  1. It upgrades the OS of each FortiGate device.
  2. It provides local FortiGuard Distribution Server (FDS) services to the network.
  3. It uses templates to configure the same settings on many devices simultaneously.
  4. It sends email alerts when new devices connect.

Answer(s): C

Explanation:

FortiManager helps with mass provisioning by using templates that allow administrators to configure the same settings on multiple FortiGate devices simultaneously, streamlining deployment and management.



What is the purpose of ADOM revisions?

  1. ADOM revisions find unused, duplicate, and unnecessary firewall policies and objects.
  2. ADOM revisions show specific changes in a policy package when it is installed.
  3. ADOM revisions compare previous snapshots of the Policy Package and ADOM-level objects with the device-level database.
  4. ADOM revisions save the current state of all policy packages and objects for an ADOM.

Answer(s): D

Explanation:

ADOM revisions save the current state of all policy packages and objects within an ADOM, allowing administrators to track changes over time and revert to previous configurations if needed.



Refer to the exhibit.



An administrator assigned a new policy package to FortiGate HQ-NGFW-1. In the installation preview, they noticed some settings they did not modify and are unsure about the changes.

Based on the exhibit, which two things will happen if they continue with the installation? (Choose two.)

  1. FortiGate HQ-NGFW-1 can use FortiManager firmware templates to upgrade firmware and ratings.
  2. FortiGate HQ-NGFW-1 can contact the FortiManager acting as FortiGuard Distribution Server (FDS) to download FortiGuard updates.
  3. FortiGate HQ-NGFW-1 will use the root_CA3 certificate in firewall address objects or policies.
  4. FortiManager will install the CA certificate named root_CA3 to authenticate FortiGate-to- FortiManager communication protocol (FGFM) tunnel connections with FortiGate HQ- NGFW-1.

Answer(s): B,D

Explanation:

The configuration includes a server-list with server-type set to "update rating," which enables FortiGate HQ-NGFW-1 to contact FortiManager as a FortiGuard Distribution Server (FDS) for FortiGuard updates.

The installation includes a root_CA3 certificate, which FortiManager will install on FortiGate HQ- NGFW-1 to authenticate FGFM tunnel connections between the devices.



Refer to the exhibit.



An administrator created two new meta fields in FortiManager.

Which operation can you perform with these parameters?

  1. You can add them to objects as custom attributes.
  2. You can export them to be used in other ADOMs.
  3. You can use them as variables in scripts.
  4. You can invoke them using the $ character.

Answer(s): A

Explanation:

Meta fields in FortiManager can be added to objects as custom attributes, allowing administrators to categorize and add additional information to firewall objects for easier management and identification.



Push updates are failing on a FortiGate device located behind a network address translation (NAT) device?
Which two settings should the administrator check to correct this problem? (Choose two.)

  1. Make sure the NAT device IP address and the correct ports are configured on FortiManager.
  2. Make sure FortiGuard updates and web service are enabled on the FortiGuard service interface.
  3. Make sure the virtual IP address and the correct ports are configured on the NAT device.
  4. Make sure the Bind to IP address option on the FortiGuard service interface is set to the virtual IP
    address from the NAT device.

Answer(s): A,C

Explanation:

FortiManager must have the NAT device's IP address and correct ports configured to communicate properly with the FortiGate behind NAT.
The NAT device must have the correct virtual IP address and ports configured to allow push updates to reach the FortiGate device.



The administrator uses FortiManager to push a CLI script using the Remote FortiGate Directly (via CLI) option to configure an IPsec VPN. However, when running the script, the administrator receives the following error:
config vpn ipsec phase2-interface [parameter(s) invalid. detail: object mismatch] What must the administrator do to resolve the script error and successfully apply the IPsec configuration?

  1. Add the end command after finishing the IPsec phase 1-interface configuration block.
  2. Use IPsec templates to deploy provisioning templates.
  3. Add a second config vpn ipsec phase2-interface block without linking it to phase1.
  4. Run the script using the policy package or ADOM database method.

Answer(s): D

Explanation:

Running the script through the policy package or ADOM database method allows FortiManager to properly interpret object relationships and dependencies in the IPsec configuration, preventing object mismatch errors when pushing complex VPN settings directly via CLI.



Viewing Page 2 of 6



Share your comments for Fortinet FCP_FMG_AD-7.6 exam with other users:

ally 8/19/2023 5:31:00 PM

plaese add questions
TURKEY


DIA 10/7/2023 5:59:00 AM

is dumps still valid ?
FRANCE


Annie 7/7/2023 8:33:00 AM

thanks for this
EUROPEAN UNION


arnie 9/17/2023 6:38:00 AM

please upload questions
Anonymous


Tanuj Rana 7/22/2023 2:33:00 AM

please upload the question dump for professional machinelearning
Anonymous


Future practitioner 8/10/2023 1:26:00 PM

question 4 answer is c. this site shows the correct answer as b. "adopt a consumption model" is clearly a cost optimization design principle. looks like im done using this site to study!!!
Anonymous


Ace 8/3/2023 10:37:00 AM

number 52 answer is d
UNITED STATES


Nathan 12/17/2023 12:04:00 PM

just started preparing for my exam , and this site is so much help
Anonymous


Corey 12/29/2023 5:06:00 PM

question 35 is incorrect, the correct answer is c, it even states so: explanation: when a vm is infected with ransomware, you should not restore the vm to the infected vm. this is because the ransomware will still be present on the vm, and it will encrypt the files again. you should also not restore the vm to any vm within the companys subscription. this is because the ransomware could spread to other vms in the subscription. the best way to restore a vm that is infected with ransomware is to restore it to a new azure vm. this will ensure that the ransomware is not present on the new vm.
Anonymous


Rajender 10/18/2023 3:54:00 AM

i would like to take psm1 exam.
Anonymous


Blessious Phiri 8/14/2023 9:53:00 AM

cbd and pdb are key to the database
SOUTH AFRICA


Alkaed 10/19/2022 10:41:00 AM

the purchase and download process is very much streamlined. the xengine application is very nice and user-friendly but there is always room for improvement.
NETHERLANDS


Dave Gregen 9/4/2023 3:17:00 PM

please upload p_sapea_2023
SWEDEN


Sarah 6/13/2023 1:42:00 PM

anyone use this? the question dont seem to follow other formats and terminology i have been studying im getting worried
CANADA


Shuv 10/3/2023 8:19:00 AM

good questions
UNITED STATES


Reb974 8/5/2023 1:44:00 AM

hello are these questions valid for ms-102
CANADA


Mchal 7/20/2023 3:38:00 AM

some questions are wrongly answered but its good nonetheless
POLAND


Sonbir 8/8/2023 1:04:00 PM

how to get system serial number using intune
Anonymous


Manju 10/19/2023 1:19:00 PM

is it really helpful to pass the exam
Anonymous


LeAnne Hair 8/24/2023 12:47:00 PM

#229 in incorrect - all the customers require an annual review
UNITED STATES


Abdul SK 9/28/2023 11:42:00 PM

kindy upload
Anonymous


Aderonke 10/23/2023 12:53:00 PM

fantastic assessment on psm 1
UNITED KINGDOM


SAJI 7/20/2023 2:51:00 AM

56 question correct answer a,b
Anonymous


Raj Kumar 10/23/2023 8:52:00 PM

thank you for providing the q bank
CANADA


piyush keshari 7/7/2023 9:46:00 PM

true quesstions
Anonymous


B.A.J 11/6/2023 7:01:00 AM

i canĀ“t believe ms asks things like this, seems to be only marketing material.
Anonymous


Guss 5/23/2023 12:28:00 PM

hi, could you please add the last update of ns0-527
Anonymous


Rond65 8/22/2023 4:39:00 PM

question #3 refers to vnet4 and vnet5. however, there is no vnet5 listed in the case study (testlet 2).
UNITED STATES


Cheers 12/13/2023 9:55:00 AM

sometimes it may be good some times it may be
GERMANY


Sumita Bose 7/21/2023 1:01:00 AM

qs 4 answer seems wrong- please check
AUSTRALIA


Amit 9/7/2023 12:53:00 AM

very detailed explanation !
HONG KONG


FisherGirl 5/16/2022 10:36:00 PM

the interactive nature of the test engine application makes the preparation process less boring.
NETHERLANDS


Chiranthaka 9/20/2023 11:15:00 AM

very useful.
Anonymous


SK 7/15/2023 3:51:00 AM

complete question dump should be made available for practice.
Anonymous