Refer to the exhibit. The exhibit shows output of the command diagnose sys sdwan service collected on a FortiGate device. The administrator wants to know through which interface FortiGate will steer traffic from local users on subnet 10.0.1.0/255.255.255.192 and with a destination of the social media application Facebook. Based on the exhibits, which two statements are correct? (Choose two.)
Correct Answer: A,C
"If a flow is identified as belonging to a defined application category (such as social media), FortiGate will match it to the corresponding service rule (rule 2) and route it through the specified interface, such as port2. However, if the application is not recognized during the session setup, the system defaults to load balancing the traffic using the available tunnels according to the policy for unclassified traffic, ensuring continuous connectivity while waiting for application classification." This guarantees both performance and resilience.
Question 7
Refer to the exhibit. Which two statements about the Vulnerability summary dashboard in FortiSASE are correct? (Choose two.)
Correct Answer: C,D
FortiSASE supports automatic patching for certain applications, and this capability is reflected in the vulnerability management workflow. The Vulnerability summary dashboard provides drill-down visibility, including CVE data and severity details for detected vulnerabilities.
Question 8
Refer to the exhibit, which shows the SD-WAN rule status and configuration. Based on the exhibit, which change in the measured latency will first make HUB1-VPN3 the new preferred member?
Correct Answer: A
If VPN3 latency drops to 80 ms (below threshold), while VPN2 is already over threshold, and if VPN1 later exceeds threshold, VPN3 becomes eligible and preferred.
Question 9
Which statement is true about FortiSASE supported deployment?
Correct Answer: B
FortiSASE supports multiple deployment options, including Endpoint mode (using FortiClient) and SWG mode (agentless), allowing organizations to choose the method that best fits their access and security requirements.
Question 10
Refer to the exhibit. Which two statements about the Vulnerability summary dashboard in FortiSASE are correct? (Choose two.)
Correct Answer: C,D
Based on theFortiSASE 7.6 (and later 2025 versions)curriculum and administration guides, the Vulnerability summary dashboard is a key component of the endpoint security posture management. * Drill Down Capability (Option C): According to theFortiSASE Administration Guide, the Vulnerability summary widget on the Security dashboard is interactive. An administrator can click on specific risk categories (e.g., Critical, High) or application types (e.g., Operating System, Web Client) to drill down. This action opens a detailed pane showing the specific affected endpoints, associatedCVE identifiers, and severity classifications based on the CVSS standard. * Automatic Vulnerability Patching (Option D): In theFortiSASE 7.6/2025feature sets, the endpoint profile configuration (underEndpoint > Configuration > Profiles) includes an "Automatic Patching" section. This feature allows the system to automatically install security updates for supported third- party applications and the underlying operating system (Windows/macOS) when vulnerabilities are detected. Furthermore, administrators can schedule these patches directly from theVulnerability Summarywidget by selecting specific vulnerabilities. Why other options are incorrect: * Option A: The dashboard categories (Operating System, Web Client, Microsoft Office, etc.) are based on known software signatures. While there is an "Other" category, the dashboard primarily provides scores for recognized applications where CVE data is available. * Option B: The exhibit shows active data (157 total vulnerabilities), which indicates that the vulnerability scan is enabledand currently reporting data from the endpoints. If it were disabled, the widget would be empty or show zeros.