NSE7_OTS-7.2試験無料問題集（70題）「Fortinet NSE 7

出題：1

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

A. RADIUS

B. End station traffic monitoring

C. MAC notification traps

D. Link traps

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Refer to the exhibit.
Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)

A. FortiEDR for endpoint detection

B. FortiGate for SD-WAN

C. FortiSIEM for security incident and event management

D. FortiNAC for network access control

E. FortiGate for application control and IPS

正解：A,D,E 解答を投票する

出題：3

An OT supervisor has configured LDAP and FSSO for the authentication. The goal is that all the users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication.
What should the OT supervisor do to achieve this on FortiGate?

A. Configure a firewall policy with FSSO users and place it on the top of list of firewall policies.

B. Enable two-factor authentication with FSSO.

C. Configure a firewall policy with LDAP users and place it on the top of list of firewall policies.

D. Under config user settings configure set auth-on-demand implicit.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Refer to the exhibit.

An operational technology rule is created and successfully activated to monitor the Modbus protocol on FortiSIEM. However, the rule does not trigger incidents despite Modbus traffic and application logs being received correctly by FortiSIEM.
Which statement correctly describes the issue on the rule configuration?

A. The first condition on the SubPattern filter must use the OR logical operator.

B. The SubPattern is missing the filter to match the Modbus protocol.

C. The Aggregate attribute COUNT expression is incompatible with the filters.

D. The attributes in the Group By section must match the ones in Fitters section.

正解：D 解答を投票する

出題：5

Refer to the exhibit.

You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.
What must you do to achieve this objective?

A. You must use the user self-registration server.

B. You must register the same FortiToken on more than one FortiGate.

C. You must use a FortiAuthenticator.

D. You must use a third-party RADIUS OTP server.

正解：C 解答を投票する

出題：6

The OT network analyst run different level of reports to quickly explore failures that could put the network at risk. Such reports can be about device performance. Which FortiSIEM reporting method helps to identify device failures?

A. Business service reports

B. Device inventory reports

C. CMDB operational reports

D. Active dependent rules reports

正解：B 解答を投票する

出題：7

An OT administrator configured and ran a default application risk and control report in FortiAnalyzer to learn more about the key application crossing the network. However, the report output is empty despite the fact that some related real-time and historical logs are visible in the FortiAnalyzer.
What are two possible reasons why the report output was empty? (Choose two.)

A. The administrator selected the wrong devices in the Devices section.

B. The administrator selected the wrong logs to be indexed in FortiAnalyzer.

C. The administrator selected the wrong time period for the report.

D. The administrator selected the wrong hcache table for the report.

正解：A,C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」