Create Next App

fortinet NSE5_FAZ_7_2

Custom view settings

Exam contains 46 questions

Page 5 of 8

Question 25 🔥

What happens when the IOC breach detection engine on FortiAnalyzer finds web logs that match a blocklisted IP address?

Which database solution meets these requirements?

A. The endpoint is marked as Compromised and, optionally, can be put in quarantine.

Highly voted

B. FortiAnalyzer flags the associated host for further analysis.

Highly voted

C. A new Infected entry is added for the corresponding endpoint.

Highly voted

D. The detection engine classifies those logs as Suspicious.

Highly voted

Discussion of the question

Question 26 🔥

After generating a report, you notice the information you were expecting to see is not included in it.What are two possible reasons for this scenario? (Choose two.)

Which database solution meets these requirements?

A. You enabled auto-cache with extended log filtering.

Highly voted

B. The logfiled service has not indexed all the expected logs.

Highly voted

C. The logs were overwritten by the data retention policy.

Highly voted

D. The time frame selected in the report is wrong.

Highly voted

Discussion of the question

Question 27 🔥

Which statement about the FortiSOAR management extension is correct?

Which database solution meets these requirements?

A. It requires a FortiManager configured to manage FortiGate.

Highly voted

B. It requires a dedicated FortiSOAR device or VM.

Highly voted

C. It does not include a limited trial by default.

Highly voted

D. It runs as a docker container on FortiAnalyzer.

Highly voted

Discussion of the question

Question 28 🔥

Which item must you configure on FortiAnalyzer to email generated reports automatically?

Which database solution meets these requirements?

A. Output profile

Highly voted

B. Report scheduling

Highly voted

C. SFTP server

Highly voted

D. SNMP server

Highly voted

Discussion of the question

Question 29 🔥

What is the purpose of using prefilters when configuring event handlers?

Which database solution meets these requirements?

A. They limit which logs are checked for matches by the other filters.

Highly voted

B. They can filter the logs before they are processed by FortiAnalyzer.

Highly voted

C. They download new filters to be used in event handlers.

Highly voted

D. They are common filters applied simultaneously to all event handlers.

Highly voted

Discussion of the question

Question 30 🔥

Refer to the exhibit.Which statement is correct regarding the event displayed?

Which database solution meets these requirements?

A. The security event risk is considered open.

Highly voted

B. The security risk was blocked or dropped.

Highly voted

C. The risk source is isolated.

Highly voted

D. An incident was created from this event.

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

fortinet NSE5_FAZ_7_2

Exam contains 46 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us