EMT Practice Test

1. Question Content...


Question List

Question1: Refer to the exhibits.


Which show the Zero Trust Tag Monitor and the FortiClient GUI status.
Remote-Client is tagged as Remote-Users on the FortiClient EMS Zero Trust Tag Monitor.
What must an administrator do to show the tag on the FortiClient GUI?

Question2: What is the function of the quick scan option on FortiClient?

Question3: Which two statements are true about the ZTNA rule? (Choose two. )

Question4: An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate. What is the prerequisite to get FortiClient EMS to connect to FortiGate successfully?

Question5: An administrator configures ZTNA configuration on the FortiGate for remote users. Which statement is true about the firewall policy?

Question6: Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which endpoint profile policy is currently applied to the FortiClient endpoint from the EMS server?

Question7: Refer to the exhibit.

Which shows FortiClient EMS deployment profiles.
When an administrator creates a deployment profile on FortiClient EMS, which statement about the deployment profile is true?

Question8: Which two statements are true about the ZTNA rule? (Choose two. )

Question9: Refer to the exhibits.


Which shows the configuration of endpoint policies.
Based on the configuration, what will happen when someone logs in with the user account student on an endpoint in the trainingAD domain?

Question10: Refer to the exhibit.

Based on the logs shown in the exhibit, why did FortiClient EMS fail to install FortiClient on the endpoint?

Question11: What does FortiClient do as a fabric agent? (Choose two.)

Question12: Which three types of antivirus scans are available on FortiClient? (Choose three )

Question13: Why does FortiGate need the root CA certificate of FortiClient EMS?

Question14: Which two third-party tools can an administrator use to deploy FortiClient? (Choose two.)

Question15: An administrator is required to maintain a software inventory on the endpoints. without showing the feature on the FortiClient dashboard What must the administrator do to achieve this requirement?

Question16: An administrator wants to simplify remote access without asking users to provide user credentials.
Which access control method provides this solution"?

Question17: Refer to the exhibit.

Which shows multiple endpoint policies on FortiClient EMS.
Which policy is applied to the endpoint in the AD group trainingAD?

Question18: An administrator needs to connect FortiClient EMS as a fabric connector to FortiGate. What is the prerequisite to get FortiClient EMS to connect to FortiGate successfully?

Question19: Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which endpoint profile policy is currently applied to the FortiClient endpoint from the EMS server?

Question20: In a FortiSandbox integration, what does the remediation option do?

Question21: Which security fabric component sends a notification to quarantine an endpoint after IOC detection in the automation process?

Question22: In a FortiSandbox integration, what does the remediation option do?

Question23: Refer to the exhibit.

Which shows FortiClient EMS deployment profiles.
When an administrator creates a deployment profile on FortiClient EMS, which statement about the deployment profile is true?

Question24: Refer to the exhibit.

Based on the settings shown in the exhibit what action will FortiClient take when it detects that a user is trying to download an infected file?

Question25: Refer to the exhibit.

Based on the logs shown in the exhibit, why did FortiClient EMS fail to install FortiClient on the endpoint?

Question26: Refer to the exhibit, which shows the Zero Trust Tagging Rule Set configuration.

Which two statements about the rule set are true? (Choose two.)

Question27: An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users Which FortiGate feature is required m addition to ZTNA?

Question28: Refer to the exhibit.

Based on the settings shown in the exhibit, which action will FortiClient take when users try to accesswww.facebook.com?

Question29: Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which endpoint profile policy is currently applied to the FortiClient endpoint from the EMS server?

Question30: Refer to the exhibit.

Which shows the output of the ZTNA traffic log on FortiGate.
What can you conclude from the log message?

Question31: Which security fabric component sends a notification to quarantine an endpoint after IOC detection in the automation process?

Question32: Which statement about FortiClient comprehensive endpoint protection is true?

Question33: Which two statements are true about the ZTNA rule? (Choose two. )

Question34: Refer to the exhibit.

Based on the logs shown in the exhibit, why did FortiClient EMS fail to install FortiClient on the endpoint?

Question35: Refer to the exhibits.


Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?

Question36: Refer to the exhibit.

Based on the FortiClient logs shown in the exhibit which application is blocked by the application firewall?

Question37: Which two benefits are benefits of using multi-tenancy mode on FortiClient EMS? (Choose two.)

Question38: An administrator configures ZTNA configuration on the FortiGate for remote users. Which statement is true about the firewall policy?

Question39: Refer to the exhibit.

Based on the CLI output from FortiGate. which statement is true?

Question40: Refer to the exhibit.

Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)

Question41: Which two benefits are benefits of using multi-tenancy mode on FortiClient EMS? (Choose two.)