Summer Sale - 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: dm70dm

NSE5_FWB_AD-8.0 Fortinet NSE 5 - FortiWeb 8.0 Administrator Questions and Answers

Questions 4

Refer to the exhibit.

NSE5_FWB_AD-8.0 Question 4

You are a FortiWeb administrator reviewing how FortiAI protects sensitive data when interacting with a large language model (LLM).

Drag each label to the corresponding step in the FortiAI data privacy workflow.

NSE5_FWB_AD-8.0 Question 4

Options:

Buy Now
Questions 5

Refer to the exhibit.

NSE5_FWB_AD-8.0 Question 5

You are configuring SSL offloading on FortiWeb to protect a public-facing application. Clients connect using HTTPS, while FortiWeb forwards requests to the back-end server using HTTP.

You are reviewing certificate deployment and need to decide where to install the private key for the certificate used in client connections.

In this SSL offloading setup, which device is responsible for using the private key associated with the web server certificate?

Options:

A.

FortiWeb, because it terminates the HTTPS session and decrypts traffic.

B.

None. SSL offloading does not require a private key because FortiWeb only forwards traffic.

C.

The server, because it always handles certificates regardless of SSL mode.

D.

The client, because it initiates the TLS handshake and verifies the certificate.

Buy Now
Questions 6

A FortiWeb administrator needs to allow a known web indexer to scan the website for search engine visibility.

What is the easiest way to allow this on FortiWeb?

Options:

A.

Add the web indexer IP address to the trusted IP address list.

B.

Add the web indexer IP address to an IP exception list inside the inline protection profile.

C.

Add the web indexer IP address to the FortiGuard Known Search Engines category.

D.

Add the web indexer user-agent string to a custom signature exception rule.

Buy Now
Questions 7

How should a FortiWeb administrator configure behavior-based bot detection to identify traffic from nonhuman users?

Options:

A.

Set request rate limits and enable mouse movement tracking.

B.

Block all traffic that doesn’t come from known devices.

C.

Disable JavaScript execution for anonymous users.

D.

Create IP blocklists based on login failures.

Buy Now
Questions 8

A FortiWeb administrator is reviewing issues found during a security audit. The audit lists shortcomings based on behavior, configuration, and data protection.

The administrator must break down the findings and match them with the correct FortiWeb feature.

Select each FortiWeb feature in the left column, hold and drag it to the blank space next to the OWASP issue in the column on the right. Once you match a FortiWeb

feature to the OWASP issue, you can move it again if you want to change your answer by clicking on the FortiWeb feature. You need to match five FortiWeb features to

the OWASP issue in the work area.

NSE5_FWB_AD-8.0 Question 8

Options:

Buy Now
Questions 9

Refer to the exhibits.

NSE5_FWB_AD-8.0 Question 9

NSE5_FWB_AD-8.0 Question 9

A new domain, https://finance.fortinet.demo, was added but not explicitly mapped. Users report the site loads correctly, but you’re unsure which back-end server is being used.

Why is this request succeeding despite no explicit routing rule for finance.fortinet.demo?

Options:

A.

The inherited certificate has a wildcard entry for all subdomains.

B.

FortiWeb auto-generates fallback policies for new domains.

C.

The connection is passed to FortiGate for secondary routing.

D.

The request defaults to app_server_1 because it is marked as the default route.

Buy Now
Questions 10

A third-party penetration test reveals that users can bypass login controls through a mobile API. Your current FortiWeb configuration includes zero trust network access (ZTNA) profiles and cookie security, but API protection and client management are not enabled. The security team asks you to recommend the most effective way to close this gap.

Which FortiWeb adjustment would best prevent future unauthorized API access?

Options:

A.

Switch to a reverse-proxy mode to bypass cookie-based controls.

B.

Enable API protection and client management to enforce identity checks on mobile API traffic.

C.

Replace ZTNA with bot protection to reduce false positives.

D.

Log only API traffic and rely on FortiAnalyzer for future alerts.

Buy Now
Exam Code: NSE5_FWB_AD-8.0
Exam Name: Fortinet NSE 5 - FortiWeb 8.0 Administrator
Last Update: Jul 4, 2026
Questions: 36

PDF + Testing Engine

$49.5  $164.99

Testing Engine

$37.5  $124.99
buy now NSE5_FWB_AD-8.0 testing engine

PDF (Q&A)

$31.5  $104.99
buy now NSE5_FWB_AD-8.0 pdf
dumpsmate guaranteed to pass

24/7 Customer Support

DumpsMate's team of experts is always available to respond your queries on exam preparation. Get professional answers on any topic of the certification syllabus. Our experts will thoroughly satisfy you.

Site Secure

mcafee secure

TESTED 05 Jul 2026