NSE7_OTS-7.2試験無料問題集（70題）「Fortinet NSE 7

出題：1

When device profiling rules are enabled, which devices connected on the network are evaluated by the device profiling rules?

A. All connected devices, each time they connect

B. Rogue devices, each time they connect

C. Rogue devices, only when they connect for the first time

D. Known trusted devices, each time they change location

正解：C 解答を投票する

出題：2

Refer to the exhibit.

You are assigned to implement a remote authentication server in the OT network.
Which part of the hierarchy should the authentication server be part of?

A. Access

B. Core

C. Cloud

D. Edge

正解：D 解答を投票する

出題：3

An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.
How can the OT network architect achieve this goal?

A. Configure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

B. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.

C. Configure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.

D. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

What are two critical tasks the OT network auditors must perform during OT network risk assessment and management? (Choose two.)

A. Planning a threat hunting strategy

B. Implementing strategies to automatically bring PLCs offline

C. Evaluating what can go wrong before it happens

D. Creating disaster recovery plans to switch operations to a backup plant

正解：A,D 解答を投票する

出題：5

An OT supervisor has configured LDAP and FSSO for the authentication. The goal is that all the users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication.
What should the OT supervisor do to achieve this on FortiGate?

A. Configure a firewall policy with FSSO users and place it on the top of list of firewall policies.

B. Enable two-factor authentication with FSSO.

C. Configure a firewall policy with LDAP users and place it on the top of list of firewall policies.

D. Under config user settings configure set auth-on-demand implicit.

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network.
Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)

A. You cannot use Windows and Linux hosts security events with FortiSoC.

B. Each playbook can include multiple triggers.

C. You must set correct operator in event handler to trigger an event.

D. You can automate SOC tasks through playbooks.

正解：C,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

An OT supervisor needs to protect their network by implementing security with an industrial signature database on the FortiGate device.
Which statement about the industrial signature database on FortiGate is true?

A. By default, the industrial database is enabled.

B. An administrator must create their own database using custom signatures.

C. A supervisor must purchase an industrial signature database and import it to the FortiGate.

D. A supervisor can enable it through the FortiGate CLI.

正解：D 解答を投票する

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」