NSE 5 — FortiAnalyzer 7.2 — Question 30

Which two statements are true regarding log fetching on FortiAnalyzer? (Choose two.)

Answer options

• A. Log fetching allows the administrator to fetch analytics logs from another FortiAnalyzer for redundancy.
• B. Log fetching allows the administrator to run queries and reports against historical data by retrieving archived logs from one FortiAnalyzer device and sending them to another FortiAnalyzer device.
• C. A FortiAnalyzer device can perform either the fetch server or client role, and it can perform two roles at the same time with the same FortiAnalyzer devices at the other end.
• D. Log fetching can be done only on two FortiAnalyzer devices that are running the same firmware version.

Correct answer: B, D

Explanation

Option B is correct because it accurately describes the functionality of log fetching, specifically the ability to run queries and reports using archived logs. Option D is also correct as it states that log fetching requires both devices to run the same firmware version. Options A and C are incorrect; A misrepresents the purpose of log fetching, and C incorrectly suggests that a FortiAnalyzer can perform both roles at the same time without limitations.