Question 1

You are troubleshooting a FortiMail Cloud service integrated with Office 365 where outgoing emails are notreaching the recipients' mail What are two possible reasons for this problem? (Choose two.)

Options :

A : The FortiMail access control rule to relay from Office 365 servers FQDN is missing.

B : The FortiMail DKIM key was not set using the Auto Generation option.

C : The FortiMail access control rules to relay from Office 365 servers public IPs are missing.

D : A Mail Flow connector from the Exchange Admin Center has not been set properly to the FortiMail Cloud FQDN.

Answer: C,D

Question 2

Refer to the exhibit showing the history logs from a FortiMail device.

Which FortiMail email security feature can an administrator enable to treat these emails as spam?

Options :

A : DKIM validation in a session profile

B : Sender domain validation in a session profile

C : Impersonation analysis in an antispam profile

D : Soft fail SPF validation in an antispam profile

Answer: C

Question 3

On a FortiGateConfigured in Transparent mode, which configuration option allows you to control Multicast

traffic passing through the?

Options :

A :

B :

C :

D :

Answer: C

Question 4

Refer to the exhibit.

A customer wants FortiClient EMS configured to deploy to 1500 endpoints. The deployment will be integrated

with FortiOS and there is an Active Directory server.

Given the configuration shown in the exhibit, which two statements about the installation are correct? (Choose

two.)

Options :

A : If no client update time is specified on EMS, the user will be able to choose the time of installation if they wish to delay.

B : A client can be eligible for multiple enabled configurations on the EMS server, and one will be chosen based on first priority

C : You can only deploy initial installations to Windows clients.

D : You must use Standard or Enterprise SQL Server rather than the included SQL Server Express

E : The Windows clients only require "File and Printer Sharing0 allowed and the rest is handled by Active Directory group policy

Answer: B,C

Question 5

Refer to the exhibits.

A FortiGate cluster (CL-1) protects a data center hosting multiple web applications. A pair of FortiADC

devices are already configured for SSL decryption (FAD-1), and re-encryption (FAD-2). CL-1 must accept

unencrypted traffic from FAD-1, perform application detection on the plain-text traffic, and forward the

inspected traffic to FAD-2.

The SSL-Offload-App-Detect application list and SSL-Offload protocol options profile are applied to the

firewall policy handling the web application traffic on CL-1.

Given this scenario, which two configuration tasks must the administrator perform on CL-1? (Choose two.)

Options :

A :

B :

C :

D :

Answer: B,C

Confidently Practice Online with Free NSE8_812 Exam Cram

Buying Options: