Free FCP – FortiMail 7.4 Administrator Exam FCP_FML_AD-7.4 Exam Practice Test

A FortiMail administrator is concerned about cyber criminals attempting to get sensitive information from employees using whaling phishing attacks. What option can the administrator configure to prevent these types of attacks?

• Impersonation analysis
• Dictionary profile with predefined smart identifiers
• Bounce tag verification
• Content disarm and reconstruction

In which FortiMail configuration object can you assign an outbound session profile?

• Outbound recipient policy
• Inbound recipient policy
• IP policy
• Access delivery rule

Which statement about how impersonation analysis identifies spoofed email addresses is correct?

• It uses behavior analysis to detect spoofed addresses.
• It uses DMARC validation to detect spoofed addresses.
• It maps the display name to the correct recipient email address
• It uses SPF validation to detect spoofed addresses.

Which two factors are required for an active-active HA configuration of FortiMail in server mode? (Choose two.)

• Devices must be deployed behind a load balancer.
• Service monitoring must be configured for remote SMTP
• A primary must be designated to initially process email.
• Mail data must be stored on a NAS server.

An organization has different groups of users with different needs in email functionality, such as address book access, mobile device access, email retention periods, and disk quotas. Which FortiMail feature specific to server mode can be used to accomplish this?

• Access profiles
• Domain-level service settings
• Resource profiles.
• Email group profiles

What are two disadvantages of configuring the dictionary and DLP scan rule aggressiveness too high? (Choose two.)

• High aggressiveness scan settings do not support executable file types.
• It is more resource intensive
• More false positives could be detected.
• FortiMail requires more disk space for the additional rules.

Which two FortiMail antispam techniques can you use to combat zero-day spam? (Choose two.)

• IP reputation
• Spam outbreak protection
• DNSBL
• Behavior analysis

Which item is a supported one-time secure token for IBE authentication?

• FortiToken
• Certificate
• SMS
• Security question

A FortiMail administrator is investigating a sudden increase in DSNs being delivered to their protected domain. After searching the logs, the administrator identifies that the DSNs were not generated because of any outbound email sent from their organization.Which FortiMail antispam technique can the administrator use to prevent this scenario?

• FortiGuard IP Reputation
• Spoofed header detection
• Spam outbreak protection
• Bounce address tag validation

While testing outbound MTA functionality, an administrator discovers that all outbound email is being processed using policy ID l: 2:0: SYSTEM. What are two possible reasons why the third policy ID value is o? (Choose two.)

• IP policy ID 2 has the exclusive flag set.
• There are no outgoing recipient policies configured.
• Outbound email is being rejected.
• There are no access delivery rules configured for outbound email.