100+ Free FCP FortiWeb 7.4 Practice Questions

Pass your Fortinet FCP - FortiWeb 7.4 Administrator (FCP_FWB_AD-7.4) exam on the first try — instant access, no signup required.

✓ No registration✓ No credit card✓ No hidden fees✓ Start practicing immediately

Not published Pass Rate

100+ Questions

100% Free

1 / 100

Question 1

Score: 0/0

Which FortiWeb deployment mode terminates client connections on the FortiWeb and initiates new connections to the back-end web servers?

Offline Detection

True Transparent Proxy

Reverse Proxy

Transparent Inspection

to track

2026 Statistics

Key Facts: FCP FortiWeb 7.4 Exam

Questions

Fortinet

70 min

Exam Duration

Fortinet

Pass/Fail

Scoring

Fortinet

$200

Exam Fee

Pearson VUE

2 years

Certification Valid

Fortinet

40-60 hrs

Study Time

Recommended

The Fortinet FCP FortiWeb 7.4 Administrator exam (FCP_FWB_AD-7.4) is a 35-question, 70-minute pass/fail test delivered at Pearson VUE for $200 USD. It validates ability to deploy and operate FortiWeb 7.4 across reverse proxy, transparent, and offline modes, build server policies, tune signatures and ML, defend APIs against OWASP Top 10, mitigate bots per OWASP Automated Threats, and integrate with FortiAnalyzer and FortiSandbox.

Sample FCP FortiWeb 7.4 Practice Questions

Try these sample questions to test your FCP FortiWeb 7.4 exam readiness. Each question includes a detailed explanation. Start the interactive quiz above for the full 100+ question experience with AI tutoring.

1Which FortiWeb deployment mode terminates client connections on the FortiWeb and initiates new connections to the back-end web servers?

A.Offline Detection

B.True Transparent Proxy

C.Reverse Proxy

D.Transparent Inspection

Explanation: In Reverse Proxy mode, FortiWeb terminates the client-side TCP/SSL connection on a virtual server and opens a new TCP/SSL connection to the back-end server pool. This is the default and most feature-rich mode because FortiWeb sits in line and can rewrite, redirect, offload SSL, cache, and modify traffic. True Transparent Proxy and Transparent Inspection forward traffic at Layer 2 without terminating the connection, and Offline Detection only sees mirrored traffic.

2A FortiWeb administrator wants to deploy the appliance without changing the IP addressing of the protected web servers and still terminate SSL on FortiWeb. Which deployment mode should be selected?

A.Reverse Proxy

B.Transparent Inspection

C.True Transparent Proxy

D.Offline Detection

Explanation: True Transparent Proxy operates at Layer 2 (bridged) so the protected servers keep their original IP addresses, yet FortiWeb still terminates and re-initiates the TCP/SSL session, which allows SSL inspection, content rewriting, and full Layer 7 protection. Reverse Proxy requires changing public DNS or front-end IPs. Transparent Inspection cannot terminate SSL bidirectionally. Offline Detection is passive and cannot block in real time.

3Which deployment mode uses a SPAN/mirror port and can only RST-block attacks rather than fully drop them?

A.Reverse Proxy

B.Offline Detection

C.True Transparent Proxy

D.WCCP

Explanation: Offline Detection (also called Offline Protection) attaches FortiWeb to a SPAN or network tap so it sees a copy of the traffic. Because it is not in line, it cannot drop packets; it can only send TCP RST packets to attempt to break offending sessions. It is typically used for evaluation, monitoring, or learning. The other modes are inline and can fully block traffic.

4In WCCP deployment mode, which device is responsible for redirecting HTTP traffic to FortiWeb?

A.The web client

B.An upstream WCCP-capable router or switch

C.The back-end web server

D.A FortiAnalyzer collector

Explanation: WCCP (Web Cache Communication Protocol) deployment uses a WCCP-capable router or Layer 3 switch (typically a FortiGate or Cisco device) to redirect HTTP/HTTPS flows to FortiWeb based on a service group. FortiWeb registers with the WCCP server and processes the traffic, then returns it. The client and server are unaware of FortiWeb's presence.

5Which FortiWeb deployment mode is bridged at Layer 2 but only inspects traffic without re-initiating the TCP connection toward the server?

A.Reverse Proxy

B.True Transparent Proxy

C.Transparent Inspection

D.WCCP

Explanation: Transparent Inspection bridges traffic at Layer 2 and inspects it on the fly. Unlike True Transparent Proxy, it does not terminate and re-establish the TCP session, so some features that require connection ownership (full SSL offload, advanced rewriting, caching) are unavailable. It can still block by injecting RST packets or dropping packets in the bridge.

6Which object on FortiWeb represents the public-facing IP and port that clients connect to?

A.Server Pool

B.Virtual Server

C.Server Policy

D.Protected Hostnames

Explanation: A Virtual Server defines the front-end listener — the IP address and TCP port that external clients target. The Virtual Server is bound to a Server Policy, which in turn references a Server Pool of real back-end web servers. Protected Hostnames is a list used in policy matching, not a listener.

7Which FortiWeb object is a logical grouping of physical or virtual back-end web servers used for load balancing?

A.Server Pool

B.Virtual Server

C.Web Protection Profile

D.Network Service

Explanation: A Server Pool is a list of one or more real web servers (with IPs, ports, weights, and health-check settings) that FortiWeb load-balances traffic to. The Server Policy attaches a Virtual Server (front end) to a Server Pool (back end) and applies inspection profiles. A Web Protection Profile is the inspection bundle, not the back-end target.

8Which load-balancing algorithm in a FortiWeb Server Pool sends new connections to the server with the fewest active sessions?

A.Round Robin

B.Weighted Round Robin

C.Least Connection

D.Source IP Hash

Explanation: Least Connection forwards each new request to the back-end server currently handling the fewest active sessions, which helps balance long-running requests. Round Robin rotates regardless of load, Weighted Round Robin applies static weights, and Source IP Hash pins a client to a server for session persistence.

9Which FortiWeb feature ensures all requests from a single client continue to be routed to the same back-end server?

A.HTTP redirect

B.Session persistence

C.Content routing

D.HTTP/2 multiplexing

Explanation: Session persistence (also called sticky sessions) keeps a client bound to the same back-end server across multiple requests. FortiWeb supports persistence by source IP, cookie insertion, ASP.NET session ID, embedded cookies, and others. Content routing chooses a pool based on URL or header, but does not by itself maintain stickiness.

10What does enabling SSL/TLS offload on a FortiWeb Server Policy allow the back-end servers to do?

A.Receive plain HTTP traffic from FortiWeb

B.Negotiate SSL directly with the client

C.Disable web protection

D.Bypass the WAF entirely

Explanation: With SSL/TLS offload, FortiWeb terminates the client TLS session, decrypts traffic, performs inspection, and forwards plaintext HTTP (or re-encrypted HTTPS) to the back-end servers. Offloading frees CPU on the back-end servers and centralizes certificate management. It does not disable the WAF — inspection still occurs on the decrypted traffic.

About the FCP FortiWeb 7.4 Exam

The Fortinet FCP FortiWeb 7.4 Administrator (FCP_FWB_AD-7.4) certification validates skills to deploy, configure, and operate FortiWeb 7.4 web application firewalls. It covers deployment modes (reverse proxy, transparent inspection, true transparent proxy, offline detection, WCCP), virtual servers and server policies, SSL/TLS offload, web protection profiles, signatures, machine learning anomaly detection, API and bot mitigation, DoS protection, threat intelligence, HA, and SIEM integration.

Questions

35 scored questions

Time Limit

70 minutes

Passing Score

Pass / Fail

Exam Fee

$200 USD (Fortinet / Pearson VUE)

FCP FortiWeb 7.4 Exam Content Outline

~20%

Web Protection Profiles & Signatures

OWASP Top 10 signatures, parameter validation, hidden fields, URL access, file upload, CSRF, cookie security, header hardening

~15%

Deployment Modes & System

Reverse Proxy, True Transparent Proxy, Transparent Inspection, Offline Detection, WCCP, V-zones, ADOMs, HA

~15%

Virtual Servers, Server Pools & SSL

Virtual servers, server policies, server pools, load balancing, SSL/TLS offload, certificate management, ACME, HTTP/2

~15%

API & Bot Protection

OpenAPI validation, JSON/XML/GraphQL protection, API discovery, OWASP Automated Threats, Bot ML, CAPTCHA, credential stuffing

~10%

Machine Learning & Anomaly Detection

Application ML model, two-stage threat classifier, API ML, Bot ML, auto-learning

~10%

DoS & Access Control

Rate limit, SYN cookie, slow attack mitigation, HTTP/2 Rapid Reset, Geo IP, IP reputation, allow/block lists

~10%

Logging, Reporting & Operations

FortiAnalyzer logs, Syslog/CEF SIEM integration, FortiManager, REST API, RBAC, reporting

~5%

Threat Intelligence & ATP

FortiGuard signatures, antivirus, FortiSandbox, FortiGuard Web Filter, IP reputation, ATP bundle

How to Pass the FCP FortiWeb 7.4 Exam

What You Need to Know

Passing score: Pass / Fail
Exam length: 35 questions
Time limit: 70 minutes
Exam fee: $200 USD

Keys to Passing

Complete 500+ practice questions
Score 80%+ consistently before scheduling
Focus on highest-weighted sections
Use our AI tutor for tough concepts

FCP FortiWeb 7.4 Study Tips from Top Performers

1Memorize the four deployment modes — Reverse Proxy, True Transparent Proxy, Transparent Inspection, Offline Detection — and what each can and cannot do (especially around SSL termination)

2Build a FortiWeb 7.4 VM lab and walk through Virtual Server -> Server Pool -> Server Policy -> Web Protection Profile end-to-end

3Understand the difference between negative security (signatures) and positive security (parameter validation, URL access, hidden fields, OpenAPI)

4Study FortiWeb's two-stage ML pipeline — application model first, attack-type threat model second — and why it reduces false positives

5Map FortiWeb bot defense controls to OWASP Automated Threat IDs (OAT-008 credential stuffing, OAT-011 scraping, OAT-014 vulnerability scanning)

6Practice tuning false positives via Signature Exceptions on specific URLs/parameters rather than disabling signatures globally

7Review FortiSandbox and FortiAnalyzer integration steps end-to-end so you know what each Security Fabric component contributes

Frequently Asked Questions

What is the FCP FortiWeb 7.4 exam code and format?

The exam code is FCP_FWB_AD-7.4. It contains 35 multiple-choice and multiple-select questions to be completed in 70 minutes. It is a pass/fail exam, delivered at Pearson VUE test centers and via OnVUE online proctoring. Fortinet does not publish a numeric cut score; you receive a pass/fail result with domain-level performance feedback.

How much does the FCP FortiWeb 7.4 exam cost?

The exam fee is $200 USD, paid through Pearson VUE during scheduling. Voucher pricing may vary by region and partner program. Fortinet does not publish discounts for retakes — if you fail, the standard $200 fee applies. The certification is valid for 2 years.

What topics are covered in FCP FortiWeb 7.4?

The exam covers FortiWeb 7.4 deployment modes (Reverse Proxy, True Transparent Proxy, Transparent Inspection, Offline Detection, WCCP), virtual servers and server policies, SSL/TLS offload, web protection profiles (signatures, OWASP Top 10, parameter validation, file upload, CSRF, cookie security), machine learning anomaly detection, API protection (OpenAPI, JSON, GraphQL), bot mitigation aligned to OWASP Automated Threats, DoS prevention, FortiSandbox/ATP integration, HA, and SIEM integration.

How long should I study for FCP FortiWeb 7.4?

Most candidates need 40-60 hours of focused study. Fortinet offers a free FortiWeb 7.4 Administrator self-paced course on the Fortinet Training Institute that maps directly to exam objectives. Hands-on practice with a FortiWeb VM (free 30-day trial) is strongly recommended for deployment-mode and ML configuration topics.

Are there prerequisites for the FCP FortiWeb exam?

There are no formal prerequisites. Recommended background includes working knowledge of HTTP/HTTPS, TLS, web application architecture, and FortiOS basics. Candidates with prior FortiGate or NSE 4 experience tend to ramp up faster on Fortinet-specific terminology. Real-world experience deploying or operating a WAF is the most useful preparation.

How does FCP FortiWeb compare to NSE 6 FortiWeb?

FCP FortiWeb 7.4 Administrator is the current Fortinet Certified Professional credential, replacing the legacy NSE 6 FortiWeb Specialist designation as part of Fortinet's reorganization to FCA/FCF/FCP/FCSS/FCX tracks. Topical coverage is similar, but FCP_FWB_AD-7.4 is updated to FortiWeb 7.4 features including current ML, API discovery, and bot defense capabilities.