In FortiSIEM enterprise licensing mode, if the link between the collector and data center FortiSIEM cluster a down what happens?
Which database is used for storing anomaly data that is calculated for different parameters, such as traffic and device resource usage running averages and standard deviation values?
What are the four possible incident status values?
Refer to the exhibit.An administrator is trying to identify an issue using an expression based on the Expression Builder settings shown in the exhibit. However, the error message shown in the exhibit indicates that the expression is invalid. Which is the correct expression?
If the reported packet loss is between 50% and 98%, which status is assigned to the device in the Availability column of summary dashboard?
Refer to the exhibit.The FortiSIEM administrator is examining events for two devices to investigate an issue. However, the administrator is not getting any results from their search. Based on the selected fillers shown in the exhibit, why is the search returning no results?
