EMT Practice Test

1. Question Content...


Question List

Question1: Which factor is the best indicator of wireless client connection quality?

Question2: How does proper API protection contribute to compliance with data privacy regulations such as GDPR?

Question3: Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

Question4: How can you troubleshoot encryption-related issues in a web application? (Select all that apply)

Question5: When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical?
(Choose two)

Question6: Refer to the exhibit.

If rule 1 matches http://bwapp.fortinet.demo, rule 2 matches http://dvwa.fortinet.demo, and the default web protection profile is the inline protection profile, which protection profile will be applied to a connection to http://petstore.fortinet.demo?

Question7: Which regex expression is the correct format for redirecting the URL http://www.example.com?

Question8: Which technology is commonly used for machine learning-based threat detection in web applications?

Question9: Which two configurations are compatible for Wireless Single Sign-On (WSSO)? (Choose two.)

Question10: How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

Question11: What benefit does Auto Learning provide?

Question12: In application delivery, what should be considered when configuring caching policies for dynamic content? (Select all that apply)

Question13: Which of the following is a critical system setting that should be configured during FortiWeb deployment?

Question14: When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

Question15: Which statement about local user accounts is true?

Question16: Which of the following are common SSL/TLS encryption-related issues that can be encountered during web application deployment? (Select all that apply)

Question17: Which three statements about HTTPS on FortiWeb are true? (Choose three.)

Question18: Review the following configuration:
config waf machine-learning-policy
edit 1
set sample-limit-by-ip 0
next
end
What is the expected result of this configuration setting?

Question19: Which would be a reason to implement HTTP rewriting?

Question20: Which encryption algorithm is commonly used to secure data transmission over HTTPS connections?
(Select all that apply)

Question21: What is the primary function of configuring FortiWeb HA (High Availability)?

Question22: Which action must you take with your FortiWeb logs to ensure Payment Card Industry Data Security Standard (PCI DSS) compliance?

Question23: When enabling security fabric on the FortiGate interface to manage FortiAPs, which two types of communication channels are established between FortiGate and FortiAPs? (Choose two.)

Question24: During FortiWeb deployment, which feature can be used to protect against Distributed Denial of Service (DDoS) attacks?

Question25: Which compliance standards often require encryption and secure authentication for web applications?
(Select all that apply)

Question26: What should you consider when troubleshooting threat detection and mitigation-related issues in a web application? (Select all that apply)

Question27: When configuring API protection, what security measure is commonly used to verify the identity of clients making API requests?

Question28: Which of the following is true about Local User Accounts?

Question29: Which implementation is best suited for a deployment that must meet compliance criteria?

Question30: When the FortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

Question31: What must you configure on FortiWeb to prevent cross-origin resource sharing (CORS) attacks?

Question32: What is an advantage of utilizing machine learning for web application security compared to rule- based approaches?

Question33: What is the primary purpose of URL rewriting in application delivery? (Select all that apply)

Question34: What is a common technique to mitigate Cross-Site Scripting (XSS) attacks in web applications?

Question35: What is the primary purpose of a Content Security Policy (CSP) in web application security? (Select all that apply)

Question36: How does caching contribute to improved application delivery performance? (Select all that apply)

Question37: You are using HTTP content routing on FortiWeb. Requests for web app A should be forwarded to a cluster of web servers which all host the same web app. Requests for web app B should be forwarded to a different, single web server.
Which is true about the solution?

Question38: When configuring Auto TX Power control on an AP radio, which two statements best describe how the radio responds? (Choose two.)

Question39: When configuring machine learning for web application security, what is the primary role of machine learning algorithms?

Question40: What is a key consideration when identifying FortiWeb deployment requirements?

Question41: What can an administrator do if a client has been incorrectly period blocked?

Question42: What are the advantages of SSL inspection and SSL offloading in a web application firewall? (Select all that apply)

Question43: What capability can FortiWeb add to your Web App that your Web App may or may not already have?

Question44: In FortiWeb, which component is responsible for handling incoming traffic and applying security policies?

Question45: In which two ways does FortiWeb handle traffic that does not match any defined policies? (Choose two.)

Question46: Which of the following is a common attack vector that API protection aims to mitigate?

Question47: What is the primary purpose of configuring content compression in application delivery? (Select all that apply)

Question48: What are two advantages of using the URL rewriting and redirecting feature on FortiWeb? (Choose two.)

Question49: When configuring threat mitigation features for a web application, what is the primary purpose of rate limiting?