EMT Practice Test

1. Question Content...


Question List

Question1: When is it possible to use a self-signed certificate, rather than one purchased from a commercial certificate authority?

Question2: Which algorithm is used to build mathematical models for bot detection?

Question3: What key factor must be considered when setting brute force rate limiting and blocking?

Question4: In Reverse proxy mode, how does FortiWeb handle traffic that does not match any defined policies?

Question5: Refer to the exhibits.


FortiWeb is configured in reverse proxy mode and it is deployed downstream to FortiGate. Based on the configuration shown in the exhibits, which of the following statements is true?

Question6: Which of the following FortiWeb features is part of the mitigation tools against OWASP A4 threats?

Question7: Review the following configuration:

What is the expected result of this configuration setting?

Question8: Which of the following is true about Local User Accounts?

Question9: You are deploying FortiWeb 6.4 in an Amazon Web Services cloud. Which 2 lines of this initial setup via CLI are incorrect? (Choose two.)

Question10: You've configured an authentication rule with delegation enabled on FortiWeb.
What happens when a user tries to access the web application?

Question11: Which is true about HTTPS on FortiWeb? (Choose three.)

Question12: What other consideration must you take into account when configuring Defacement protection

Question13: What capability can FortiWeb add to your Web App that your Web App may or may not already have?

Question14: Refer to the exhibit.

Based on the configuration, what would happen if this FortiWeb were to lose power? (Choose two.)

Question15: Refer to the exhibit.

Many legitimate users are being identified as bots. FortiWeb bot detection has been configured with the settings shown in the exhibit. The FortiWeb administrator has already verified that the current model is accurate.
What can the administrator do to fix this problem, making sure that real bots are not allowed through FortiWeb?

Question16: When the FortiWeb is configured in Reverse Proxy mode and the FortiGate is configured as an SNAT device, what IP address will the FortiGate's Real Server configuration point at?

Question17: What benefit does Auto Learning provide?

Question18: When viewing the attack logs on FortiWeb, which client IP address is shown when you are using XFF header rules?

Question19: How does your FortiWeb configuration differ if the FortiWeb is upstream of the SNAT device instead of downstream of the SNAT device?

Question20: FortiWeb offers the same load balancing algorithms as FortiGate.
Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.)