Exam FCP_FMG_AD-7.4 topic 1 question 12 discussion

The official documentation of FortiManager indicates that when an ADOM is in backup mode (offline mode), you cannot use the regular "Policy & Objects" + "Install Wizard" workflow to apply changes to FortiGate. The only way to push configurations to devices is through scripts. This includes, among other things, creating or modifying firewall rules (policies) directly in the CLI of the managed FortiGate. How is this actually done with a script? A script in FortiManager can contain CLI commands that will execute on the FortiGate, for example: config firewall policy edit 100 set name "Mi-Policy-desde-Script" set srcintf "port1" set dstintf "port2" set srcaddr "all" set dstaddr "all" set action accept set schedule "always" set service "ALL" next end When running this script from FortiManager (even with the ADOM in backup mode) against the FortiGate, the policy is effectively created on the device. It is not the usual "graphical" procedure (you won't see it in the ADOM's "offline" policy database), but in practice you are installing (or modifying) a policy on the FortiGate.

"To make configuration changes from FortiManager to managed devices while in backup mode, you must use the script feature." - page 43 of FMG study guide

A is false, as no conf changes possible using policy package panel when in backup mode C is false, as there is no relationship between offline mode and this case D is false as no relationship here too

Answer B is correct

Correct answer is B

In my opinion. In backup mode. It is it possible to make change on the FMG? So the answer can't be A?

B is correct

Wrong. Only scripts can be used in backup mode. Configuration changes are disabled.