Question 1

When integrating FortiWeb and FortiAnalyzer, why is the selection for FortiWeb Version critical?(Choose two)

Options :

A : Defines communication protocol

B : Defines Database Schema

C : Defines Log storage location

D : Defines Log file format

Answer: C,D

Question 2

When configuring access control for a web application, which methods can be used to enforce security? (Select all that apply)

Options :

A : Captcha verification

B : Two-factor authentication (2FA)

C : Role-based access control (RBAC)

D : IP whitelisting

Answer: C,D

Question 3

Which of the following is a common attack vector that API protection aims to mitigate?

Options :

A : Unauthorized access to APIs

B : Distributed Denial of Service (DDoS) attacks

C : SQL injection attacks

D : Cross-site scripting (XSS) attacks

Answer: A

Question 4

Which command will enable debugging for the FortiWeb user tracking feature?

Options :

A : debug enable user-tracking 7

B : diagnose debug application user-cracking 7

C : debug application user-cracking 7

D : diagnose debug enable user-cracking 7

Answer: B

Question 5

Which FortiWeb configuration element is used to define rules for allowing or blocking specific types of traffic?

Options :

A : High Availability (HA)

B : Protected hostname

C : Firewall policy

D : Security profile

Answer: C