Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. Fortinet
  3. FCSS_CDS_AR-7.6

Fortinet FCSS_CDS_AR-7.6 Exam (page: 1)
Fortinet FCSS - Public Cloud Security 7.6 Architect
Updated on: 12-Feb-2026

Viewing Page 1 of 6
FCSS_CDS_AR-7.6 PDF 66 Questions

An administrator would like to use FortiCNP to keep track of sensitive data files located in the Amazon Web Services (AWS) S3 bucket and protect it from malware.
Which FortiCNP feature should the administrator use?

  1. FortiCNP Threat Detection policies
  2. FortiCNP Risk Management policies
  3. FortiCNP Data Scan policies
  4. FortiCNP Compliance policies

Answer(s): C



You are using Ansible to modify the configuration of several FortiGate VMs.
What is the minimum number of files you need to create, and in which file should you configure the target FortiGate IP addresses?

  1. One playbook file for each target and the required tasks, and one inventory file.
  2. One .yaml file with the target IP addresses, and one playbook file with the tasks.
  3. One inventory file for each target device, and one playbook file.
  4. One text file for all target devices, and one playbook file.

Answer(s): B



Refer to the exhibit.



Refer to the exhibit.
The exhibit shows an active-passive high availability FortiGate pair with external and internal Azure load balancers.
There is no SDN connector used in this solution.
Which configuration must the administrator implement on each FortiGate?

  1. Single BGP route to Azure probe IP address.
  2. One static route to Azure Lambda IP address.
  3. Two static routes to Azure probe IP address.
  4. Two BGP routes to Azure probe IP address.

Answer(s): C



Your DevOps team is evaluating different Infrastructure as Code (IaC) solutions for deploying complex Azure environments.
What is an advantage of choosing Azure Bicep over other IaC tools available?

  1. Azure Bicep generates deployment logs that are optimized to improve error handling.
  2. Azure Bicep provides immediate support for all Azure services, including those in preview.
  3. Azure Bicep requires less frequent schema updates than Azure Resource Manager (ARM) templates.
  4. Azure Bicep can reduce deployment costs by limiting resource utilization during testing.

Answer(s): B



You must add an Amazon Web Services (AWS) network access list (NACL) rule to allow SSH traffic to a subnet for temporary testing purposes.
When you review the current inbound and outbound NACL rules, you notice that the rules with number 5 deny SSH and Telnet traffic to the subnet.
What can you do to allow SSH traffic?

  1. You do not have to create any NACL rules because the default security group rule automatically allows SSH traffic to the subnet.
  2. You must create a new allow SSH rule anywhere in the network ACL rule base to allow SSH traffic.
  3. You must create two new allow SSH rules, each with a number bigger than 5.
  4. You must create two new allow SSH rules, each with a number smaller than 5.

Answer(s): D



Refer to the exhibit.



Refer to the exhibit.
After the initial Terraform configuration in Microsoft Azure, the terraform plan command is run.
Which two statements about running the terraform plan command are true? (Choose two.)

  1. The terraform plan command will deploy the rest of the resources except the service principal details.
  2. You cannot run the terraform apply command before the terraform plan command.
  3. The terraform plan command makes Terraform do a dry run.
  4. You must run the terraform init command once, before the terraform plan command.

Answer(s): C,D



A network security administrator is searching for a solution to secure traffic going in and out of the container infrastructure.
In which two ways can Fortinet container security help secure container infrastructures? (Choose two.)

  1. FortiGate NGFW can inspect north-south container traffic with label-aware policies.
  2. FortiGate NGFW and FortiWeb can be used to secure container traffic.
  3. FortiGate NGFW can connect to the worker nodes and protect the containers.
  4. FortiGate NGFW can be placed between each application container for north-south traffic inspection.

Answer(s): A,B



An organization is deploying FortiDevSec to enhance security for containerized applications, and they need to ensure containers are monitored for suspicious behavior at runtime.
Which FortiDevSec feature is best for detecting runtime threats?

  1. FortiDevSec Software Composition Analysis (SCA)
  2. FortiDevSec Static Application Security Testing (SAST)
  3. FortiDevSec Dynamic Application Security Testing (DAST)
  4. FortiDevSec Container Scanner

Answer(s): D



Viewing Page 1 of 6



Share your comments for Fortinet FCSS_CDS_AR-7.6 exam with other users:

Nani 9/10/2023 12:02:00 PM

its required for me, please make it enable to access. thanks
UNITED STATES


ethiopia 8/2/2023 2:18:00 AM

seems good..
ETHIOPIA


whoAreWeReally 12/19/2023 8:29:00 PM

took the test last week, i did have about 15 - 20 word for word from this site on the test. (only was able to cram 600 of the questions from this site so maybe more were there i didnt review) had 4 labs, bgp, lacp, vrf with tunnels and actually had to skip a lab due to time. lots of automation syntax questions.
EUROPEAN UNION


vs 9/2/2023 12:19:00 PM

no comments
Anonymous


john adenu 11/14/2023 11:02:00 AM

nice questions bring out the best in you.
Anonymous


Osman 11/21/2023 2:27:00 PM

really helpful
Anonymous


Edward 9/13/2023 5:27:00 PM

question #50 and question #81 are exactly the same questions, azure site recovery provides________for virtual machines. the first says that it is fault tolerance is the answer and second says disater recovery. from my research, it says it should be disaster recovery. can anybody explain to me why? thank you
CANADA


Monti 5/24/2023 11:14:00 PM

iam thankful for these exam dumps questions, i would not have passed without this exam dumps.
UNITED STATES


Anon 10/25/2023 10:48:00 PM

some of the answers seem to be inaccurate. q10 for example shouldnt it be an m custom column?
MALAYSIA


PeterPan 10/18/2023 10:22:00 AM

are the question real or fake?
Anonymous


CW 7/11/2023 3:19:00 PM

thank you for providing such assistance.
UNITED STATES


Mn8300 11/9/2023 8:53:00 AM

nice questions
Anonymous


Nico 4/23/2023 11:41:00 PM

my 3rd purcahse from this site. these exam dumps are helpful. very helpful.
ITALY


Chere 9/15/2023 4:21:00 AM

found it good
Anonymous


Thembelani 5/30/2023 2:47:00 AM

excellent material
Anonymous


vinesh phale 9/11/2023 2:51:00 AM

very helpfull
UNITED STATES


Bhagiii 11/4/2023 7:04:00 AM

well explained.
Anonymous


Rahul 8/8/2023 9:40:00 PM

i need the pdf, please.
CANADA


CW 7/11/2023 2:51:00 PM

a good source for exam preparation
UNITED STATES


Anchal 10/23/2023 4:01:00 PM

nice questions
INDIA


J Nunes 9/29/2023 8:19:00 AM

i need ielts general training audio guide questions
BRAZIL


Ananya 9/14/2023 5:16:00 AM

please make this content available
UNITED STATES


Swathi 6/4/2023 2:18:00 PM

content is good
Anonymous


Leo 7/29/2023 8:45:00 AM

latest dumps please
INDIA


Laolu 2/15/2023 11:04:00 PM

aside from pdf the test engine software is helpful. the interface is user-friendly and intuitive, making it easy to navigate and find the questions.
UNITED STATES


Zaynik 9/17/2023 5:36:00 AM

questions and options are correct, but the answers are wrong sometimes. so please check twice or refer some other platform for the right answer
Anonymous


Massam 6/11/2022 5:55:00 PM

90% of questions was there but i failed the exam, i marked the answers as per the guide but looks like they are not accurate , if not i would have passed the exam given that i saw about 45 of 50 questions from dump
Anonymous


Anonymous 12/27/2023 12:47:00 AM

answer to this question "what administrative safeguards should be implemented to protect the collected data while in use by manasa and her product management team? " it should be (c) for the following reasons: this administrative safeguard involves controlling access to collected data by ensuring that only individuals who need the data for their job responsibilities have access to it. this helps minimize the risk of unauthorized access and potential misuse of sensitive information. while other options such as (a) documenting data flows and (b) conducting a privacy impact assessment (pia) are important steps in data protection, implementing a "need to know" access policy directly addresses the issue of protecting data while in use by limiting access to those who require it for legitimate purposes. (d) is not directly related to safeguarding data during use; it focuses on data transfers and location.
INDIA


Japles 5/23/2023 9:46:00 PM

password lockout being the correct answer for question 37 does not make sense. it should be geofencing.
Anonymous


Faritha 8/10/2023 6:00:00 PM

for question 4, the righr answer is :recover automatically from failures
UNITED STATES


Anonymous 9/14/2023 4:27:00 AM

question number 4s answer is 3, option c. i
UNITED STATES


p das 12/7/2023 11:41:00 PM

very good questions
UNITED STATES


Anna 1/5/2024 1:12:00 AM

i am confused about the answers to the questions. are the answers correct?
KOREA REPUBLIC OF


Bhavya 9/13/2023 10:15:00 AM

very usefull
Anonymous