[2024年07月10日] トップクラスのNSE7_OTS-7.2練習試験問題 [Q22-Q47]

Share

[2024年07月10日] トップクラスのNSE7_OTS-7.2練習試験問題

実際問題を使ってNSE7_OTS-7.2無料問題集サンプル問題と練習テストエンジン


Fortinet NSE7_OTS-7.2 認定試験は、OTセキュリティの徹底的な理解と効果的なセキュリティ対策を実装する能力を証明するために、サイバーセキュリティ業界で高く評価されています。この認定は、製造業、エネルギー、輸送などのOTシステムが組織の運営に重要な役割を果たす産業で働く専門家に特に有益です。Fortinet NSE 7 - OT Security 7.2 認定を取得することで、個人はキャリアの可能性を向上させ、OTセキュリティにおける卓越性へのコミットメントを証明することができます。

 

質問 # 22
Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT cannot send traffic to each other.
Which two statements about the traffic between PCL-1 and PLC-2 are true? (Choose two.)

  • A. Micro-segmentation on FGT-2 prevents direct device-to-device communication.
  • B. Traffic must be inspected by FGT-EDGE in OT networks.
  • C. FGT-2 controls intra-VLAN traffic through firewall policies.
  • D. The switch on FGT-2 must be hardware to implement micro-segmentation.

正解:A、C


質問 # 23
An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication.
What is a possible reason?

  • A. The user was determined by Security Fabric
  • B. FortiGate determined the user by passive authentication
  • C. Two-factor authentication is not configured with RADIUS authentication method
  • D. FortiNAC determined the user by DHCP fingerprint method

正解:B


質問 # 24
Refer to the exhibit.

You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.
What must you do to achieve this objective?

  • A. You must register the same FortiToken on more than one FortiGate.
  • B. You must use a FortiAuthenticator.
  • C. You must use the user self-registration server.
  • D. You must use a third-party RADIUS OTP server.

正解:B


質問 # 25
Refer to the exhibit.

Which statement about the interfaces shown in the exhibit is true?

  • A. port1, port1-vlan10, and port1-vlan1 are in different broadcast domains
  • B. port2, port2-vlan10, and port2-vlan1 are part of the software switch interface.
  • C. port1-vlan10 and port2-vlan10 are part of the same broadcast domain
  • D. The VLAN ID of port1-vlan1 can be changed to the VLAN ID 10.

正解:A


質問 # 26
An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.
Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

  • A. A syslog server and FortiSIEM
  • B. FortiSOAR and FortiSIEM
  • C. FortiSIEM and FortiManager
  • D. FortiSandbox and FortiSIEM

正解:B


質問 # 27
Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT can send traffic to each other at the Layer 2 level.
What must the OT admin do to prevent Layer 2-level communication between PLC-3 and CLIENT?

  • A. Implement policy routes on FGT-2 to control traffic between devices.
  • B. Set a unique forward domain for each interface of the software switch.
  • C. Create a VLAN for each device and replace the current FGT-2 software switch members.
  • D. Enable explicit intra-switch policy to require firewall policies on FGT-2.

正解:B、C


質問 # 28
What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

  • A. Adapter consolidation for multi-adapter hosts
  • B. Direct VLAN assignment
  • C. Enhanced point of connection details
  • D. Importation and classification of hosts

正解:C、D


質問 # 29
Refer to the exhibit.

You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.
What must you do to achieve this objective?

  • A. You must register the same FortiToken on more than one FortiGate.
  • B. You must use a FortiAuthenticator.
  • C. You must use the user self-registration server.
  • D. You must use a third-party RADIUS OTP server.

正解:B


質問 # 30
Refer to the exhibit.

Which statement is true about application control inspection?

  • A. The industrial application control inspection process is unique among application categories.
  • B. Security actions cannot be applied on the lowest level of the hierarchy.
  • C. The parent signature takes precedence over the child application signature.
  • D. You can control security actions only on the parent-level application signature

正解:D


質問 # 31
Refer to the exhibit, which shows a non-protected OT environment.

An administrator needs to implement proper protection on the OT network.
Which three steps should an administrator take to protect the OT network? (Choose three.)

  • A. Configure firewall policies with industrial protocol sensors
  • B. Deploy an edge FortiGate between the internet and an OT network as a one-arm sniffer.
  • C. Configure firewall policies with web filter to protect the different ICS networks.
  • D. Use segmentation
  • E. Deploy a FortiGate device within each ICS network.

正解:A、B、C


質問 # 32
What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

  • A. Enhanced point of connection details
  • B. Direct VLAN assignment
  • C. Adapter consolidation for multi-adapter hosts
  • D. Importation and classification of hosts

正解:C、D

解説:
The two benefits of a Nozomi integration with FortiNAC are enhanced point of connection details and importation and classification of hosts. Enhanced point of connection details allows for the identification and separation of traffic from multiple points of connection, such as Wi-Fi, wired, cellular, and VPN. Importation and classification of hosts allows for the automated importing and classification of host and device information into FortiNAC. This allows for better visibility and control of the network.


質問 # 33
Refer to the exhibit.

Given the configurations on the FortiGate, which statement is true?

  • A. FortiGate is configured with forward-domains to forward only company domain website traffic.
  • B. FortiGate is configured with forward-domains to reduce unnecessary traffic.
  • C. FortiGate is configured with forward-domains to forward only domain controller traffic.
  • D. FortiGate is configured with forward-domains to filter and drop non-domain controller traffic.

正解:B


質問 # 34
An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.
Which step must the administrator take to achieve this task?

  • A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.
  • B. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM.
  • C. Create a notification policy and define a script/remediation on FortiSIEM.
  • D. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.

正解:C

解説:
Explanation
https://fusecommunity.fortinet.com/blogs/silviu/2022/04/12/fortisiempublishingscript


質問 # 35
Refer to the exhibits.

Which statement is true about the traffic passing through to PLC-2?

  • A. The application filter overrides the default action of some IEC 104 signatures.
  • B. IEC 104 signatures are all allowed except the C.BO.NA 1 signature.
  • C. SSL Inspection must be set to deep-inspection to correctly apply application control.
  • D. IPS must be enabled to inspect application signatures.

正解:A


質問 # 36
What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

  • A. Adapter consolidation for multi-adapter hosts
  • B. Direct VLAN assignment
  • C. Enhanced point of connection details
  • D. Importation and classification of hosts

正解:C、D

解説:
Explanation
The two benefits of a Nozomi integration with FortiNAC are enhanced point of connection details and importation and classification of hosts. Enhanced point of connection details allows for the identification and separation of traffic from multiple points of connection, such as Wi-Fi, wired, cellular, and VPN. Importation and classification of hosts allows for the automated importing and classification of host and device information into FortiNAC. This allows for better visibility and control of the network.


質問 # 37
Refer to the exhibit.

An OT administrator ran a report to identify device inventory in an OT network.
Based on the report results, which report was run?

  • A. A FortiSIEM CMDB report
  • B. A FortiSIEM analytics report
  • C. A FortiSIEM incident report
  • D. A FortiAnalyzer device report

正解:A


質問 # 38
An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.
How can the OT network architect achieve this goal?

  • A. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.
  • B. Configure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.
  • C. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.
  • D. Configure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

正解:C

解説:
This way, FortiSIEM can discover and monitor everything attached to the remote network and provide security visibility to the corporate network


質問 # 39
An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network.
Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)

  • A. Each playbook can include multiple triggers.
  • B. You can automate SOC tasks through playbooks.
  • C. You cannot use Windows and Linux hosts security events with FortiSoC.
  • D. You must set correct operator in event handler to trigger an event.

正解:B、D

解説:
Explanation
Ref: https://docs.fortinet.com/document/fortianalyzer/7.0.0/administration-guide/268882/fortisoc


質問 # 40
What are two critical tasks the OT network auditors must perform during OT network risk assessment and management? (Choose two.)

  • A. Planning a threat hunting strategy
  • B. Creating disaster recovery plans to switch operations to a backup plant
  • C. Implementing strategies to automatically bring PLCs offline
  • D. Evaluating what can go wrong before it happens

正解:A、B


質問 # 41
Refer to the exhibit.

An OT architect has implemented a Modbus TCP with a simulation server Conpot to identify and control the Modus traffic in the OT network. The FortiGate-Edge device is configured with a software switch interface ssw-01.
Based on the topology shown in the exhibit, which two statements about the successful simulation of traffic between client and server are true? (Choose two.)

  • A. Port5 is not a member of the software switch.
  • B. The FortiGate devices is in offline IDS mode.
  • C. NAT is disabled in the FortiGate firewall policy from port3 to ssw-01.
  • D. The FortiGate-Edge device must be in NAT mode.

正解:C、D


質問 # 42
You are investigating a series of incidents that occurred in the OT network over past 24 hours in FortiSIEM.
Which three FortiSIEM options can you use to investigate these incidents? (Choose three.)

  • A. Risk
  • B. List
  • C. Security
  • D. IPS
  • E. Overview

正解:A、B、E


質問 # 43
Refer to the exhibit.

You are assigned to implement a remote authentication server in the OT network.
Which part of the hierarchy should the authentication server be part of?

  • A. Cloud
  • B. Edge
  • C. Core
  • D. Access

正解:B


質問 # 44
An OT network architect needs to secure control area zones with a single network access policy to provision devices to any number of different networks.
On which device can this be accomplished?

  • A. FortiEDR
  • B. FortiSwitch
  • C. FortiNAC
  • D. FortiGate

正解:D

解説:
Explanation
An OT network architect can accomplish the goal of securing control area zones with a single network access policy to provision devices to any number of different networks on a FortiGate device.


質問 # 45
Refer to the exhibit.

Which statement about the interfaces shown in the exhibit is true?

  • A. port1, port1-vlan10, and port1-vlan1 are in different broadcast domains
  • B. port2, port2-vlan10, and port2-vlan1 are part of the software switch interface.
  • C. port1-vlan10 and port2-vlan10 are part of the same broadcast domain
  • D. The VLAN ID of port1-vlan1 can be changed to the VLAN ID 10.

正解:A


質問 # 46
An OT network architect needs to secure control area zones with a single network access policy to provision devices to any number of different networks.
On which device can this be accomplished?

  • A. FortiEDR
  • B. FortiSwitch
  • C. FortiNAC
  • D. FortiGate

正解:D

解説:
An OT network architect can accomplish the goal of securing control area zones with a single network access policy to provision devices to any number of different networks on a FortiGate device.


質問 # 47
......


Fortinet NSE7_OTS-7.2(Fortinet NSE 7 - OT Security 7.2)試験は、操作技術(OT)ネットワークのセキュリティに関する知識とスキルを検証したい個人向けの認定プログラムです。この認定は、産業制御システム(ICS)、監視制御およびデータ収集(SCADA)システム、およびその他のOT機器で作業するプロフェッショナルを対象としています。試験は、OTセキュリティの基礎、リスク評価、脅威の検出と対応、およびネットワークのセグメンテーションなど、幅広いトピックをカバーしています。


FortinetのNSE7_OTS-7.2認定試験は、大量の準備と学習を必要とする厳しい試験です。試験の準備をするには、候補者はOTセキュリティの原則と実践についての堅固な理解と、OT環境での作業経験が必要です。Fortinetは、オンラインコース、学習ガイド、および練習問題など、試験の準備を支援するためのさまざまなトレーニングおよび認定リソースを提供しています。

 

合格させるFortinet NSE7_OTS-7.2試験問題でテスト復刻エンジンとPDF:https://www.goshiken.com/Fortinet/NSE7_OTS-7.2-mondaishu.html

2024年最新の実際に出ると確認されたFortinet NSE7_OTS-7.2無料試験問題:https://drive.google.com/open?id=1snsQacsmry3fRq0OHaMFNH0l47usihtm