The reason why "The script history will show successful installation of the script on the remote FortiGate" is incorrect in this context is because when the script is run using the Device Database option, the changes are made only to the FortiManager's device database and not directly to the managed FortiGate device.
Here’s why:
The Device Database stores configuration changes in FortiManager but doesn’t push them to the actual FortiGate device until you run the Install Wizard.
The script history only logs actions that occur on the actual device, so until the changes are installed via the Install Wizard, the script history will not show the script's successful installation on the FortiGate device itself.
Only after you push the changes to the device using the Install Wizard would the script be executed on the actual FortiGate device, and then it would be logged in the script history as a successful installation.
A) FortiManager_7.2_Study_Guide-Online.pdf page 187: Once scripts are run on the device database, you can then install the changes on a managed device using the installation wizard.
D) FortiManager_7.2_Study_Guide-Online.pdf page 157: Since the script changed the device settings in FortiManager, the Config Status shows "Modified" and needs to be installed with Installation Wizard.
A and D are correct. The logic works better if you look at this list from the bottom up.
D is correct, all changes to the device database will show as Modified.
C is incorrect because the execution of a script to the device-database doesn't push to the device itself.
B is also incorrect because, again if you run the script on the device database, it doesn't push to the device yet and so wouldn't show as successfully installed on the remote Fortigate.
A is what is left and must be correct. You need to run an install with either the Install Wizard (or Quick Install, but that doesn't seem to matter here.)
I run that in a lab
B=wrong - the script runs in the device database and not installed directly to the device
C=wrong - if you run the script in the device database it will not create a new revision history
therefore A and D are correct.
Page 187 on the manual
After some discussion and testing this in my lab, I would update my Answer.
The important part here is "What will happen if the script is RUN". If the Script is run, "D" is correct.
C - as mentioned before, only applies after the change in the DB is commited to the FG.
B - Vaguely, because the remote Fortigate indicates it is shown on the remote fortigate.
A - Install Wizard is possible. But so is the quick Install.
The question and possible answers is a little bit confusing imo.
So, the most likely scenario will be BD. So Ignore my last comment, since I cant update it.
A - correct
B - correct
C - As per Study Guide p188. "If you perform a retrieval [...] FMG creates a new revision history.
D is incorrect. The sole creation of the Script, doesn't change the status of the Device Settings.
This means, AB are the correct anwers.
Tested in my LAB - BD
A - Incorrect - they are Device level changes, and can be done with Quick Install or Install Wizard
B - Correct - you can view the history on the Dashboard/Config Installation Widget or task monitor
C - Incorrect - as changes haven't been made to the FortiGate
D - Correct
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Redrum702
7 months, 3 weeks agomyrmidon3
3 months, 3 weeks agoHalmonte0780
9 months, 2 weeks agoDidesouzads
9 months, 3 weeks agoGriffXX
9 months, 4 weeks agosugar12
10 months agokokodoko
10 months, 1 week ago4c995f3
10 months, 1 week ago4c995f3
10 months, 1 week agoDaBadge79
10 months, 2 weeks agoAgentSmith
10 months, 3 weeks agoOKOTO1
10 months, 3 weeks agoTommy_S
10 months, 3 weeks ago