What is the recommended method of expanding disk space on a FortiAnalyzer VM?
Correct Answer:
A
Adding an Additional Virtual Disk:
From the VM host manager (such as VMware vSphere or Hyper-V), you can add a new virtual disk to the FortiAnalyzer VM.
Extending the Logical Volume:
After adding the new disk, use commands like #execute lvm extend within the FortiAnalyzer to extend the logical volume, making the additional storage available to the VM. This is particularly useful when you need to add more storage without disrupting existing data.
This approach is recommended when you need to ensure the FortiAnalyzer VM can handle more storage without reformatting or affecting existing data.
Which statement is true when you are upgrading the firmware on an HA cluster made up of throe
FortiAnalyzer devices?
Correct Answer:
D
In an HA cluster, the firmware upgrade process involves upgrading the secondary devices first. This
approach ensures that the primary device can continue to handle traffic and maintain the operational
stability of the network while the secondary devices are being upgraded. Once the secondary devices
have successfully upgraded their firmware and are operational, the primary device can then be
upgraded. This method minimizes downtime and maintains network integrity during the upgrade process.
When upgrading firmware in a High Availability (HA) cluster of FortiAnalyzer units, the recommended
practice is to first upgrade the secondary devices before upgrading the primary device. This approach
ensures that the primary device, which coordinates the cluster's operations, remains functional for as
long as possible, minimizing the impact on log collection and analysis. Once the secondary devices are
successfully upgraded and operational, the primary device can be upgraded, ensuring a smooth transition and maintaining continuous operation of the cluster.
Reference: FortiAnalyzer 7.2 Administrator Guide - "System Administration" and "High Availability"
sections.
How do you restrict an administrator's access to a subset of your organization's ADOMs?
Correct Answer:
B
To restrict an administrator's access to a subset of your organization's ADOMs (Administrative Domains) in FortiAnalyzer, you need to assign the specific ADOMs to the administrator's account. Here??s how this works:
Assign the ADOMs to the Administrator's Account (Option B):
In FortiAnalyzer, you can configure which ADOMs an administrator has access to by assigning them directly to the administrator's account. This allows you to control and limit the administrator's access to only the ADOMs they are authorized to manage or view.
Which two methods can you use to restrict administrative access on FortiAnalyzer? (Choose two.)
Correct Answer:
AD
Configure trusted hosts.
Trusted hosts restrict administrative access to FortiAnalyzer by limiting the IP addresses or subnets from which administrators can log in.
Use administrator profiles.
Administrator profiles define roles and permissions, restricting what specific administrators can access and manage on FortiAnalyzer.
The other options are not applicable because:
Limiting access to specific virtual domains is not applicable to FortiAnalyzer, as virtual domains (VDOMs) are a concept used in FortiGate, not FortiAnalyzer.
Fabric connectors to external LDAP servers are used for authentication purposes but do not directly restrict administrative access based on roles or IP addresses.
Which feature can you configure to add redundancy to FortiAnalyzer?
Correct Answer:
D
Link aggregation is a method used to combine multiple network connections in parallel to increase
throughput and provide redundancy in case one of the links fail. This feature is used in network
appliances, including FortiAnalyzer, to add redundancy to the network connections, ensuring that there is
a backup path for traffic if the primary path becomes unavailable.
Reference: The FortiAnalyzer 7.4.1 Administration Guide explains the concept of link aggregation and its
relevance to