ExamGecko
Login
Home / Fortinet / NSE7_OTS-7.2 / List of questions
Ask Question

Fortinet NSE7_OTS-7.2 Practice Test - Questions Answers, Page 2

Add to Whishlist

List of questions

Question 11

Report Export Collapse

An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.

Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

FortiSIEM and FortiManager
FortiSIEM and FortiManager
FortiSandbox and FortiSIEM
FortiSandbox and FortiSIEM
FortiSOAR and FortiSIEM
FortiSOAR and FortiSIEM
A syslog server and FortiSIEM
A syslog server and FortiSIEM
Suggested answer: C
asked 18/09/2024
stefano atzei
37 questions

Question 12

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_OTS-7.2 image Question 12 27091 09182024190808000000

You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.

What must you do to achieve this objective?

Become a Premium Member for full access
  Unlock Premium Member

Question 13

Report Export Collapse

An OT supervisor has configured LDAP and FSSO for the authentication. The goal is that all the users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication.

What should the OT supervisor do to achieve this on FortiGate?

Become a Premium Member for full access
  Unlock Premium Member

Question 14

Report Export Collapse

An OT network architect needs to secure control area zones with a single network access policy to provision devices to any number of different networks.

On which device can this be accomplished?

Become a Premium Member for full access
  Unlock Premium Member

Question 15

Report Export Collapse

Refer to the exhibit.

Fortinet NSE7_OTS-7.2 image Question 15 27094 09182024190808000000

Based on the topology designed by the OT architect, which two statements about implementing OT security are true? (Choose two.)

Become a Premium Member for full access
  Unlock Premium Member

Question 16

Report Export Collapse

Which three methods of communication are used by FortiNAC to gather visibility information? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member

Question 17

Report Export Collapse

An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network.

What statement about the traffic between PLC1 and PLC2 is true?

Become a Premium Member for full access
  Unlock Premium Member

Question 18

Report Export Collapse

An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.

Which step must the administrator take to achieve this task?

Become a Premium Member for full access
  Unlock Premium Member

Question 19

Report Export Collapse

When you create a user or host profile, which three criteria can you use? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member

Question 20

Report Export Collapse

Refer to the exhibit, which shows a non-protected OT environment.

Fortinet NSE7_OTS-7.2 image Question 20 27099 09182024190808000000

An administrator needs to implement proper protection on the OT network.

Which three steps should an administrator take to protect the OT network? (Choose three.)

Become a Premium Member for full access
  Unlock Premium Member
Total 62 questions
Go to page: of 7
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site. Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third-party company while continuing to secure the ICS networks?
As an OT administrator, it is important to understand how industrial protocols work in an OT network. Which communication method is used by the Modbus protocol?
Refer to the exhibit. You are assigned to implement a remote authentication server in the OT network. Which part of the hierarchy should the authentication server be part of?
An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network. What statement about the traffic between PLC1 and PLC2 is true?
To increase security protection in an OT network, how does application control on ForliGate detect industrial traffic?
With the limit of using one firewall device, the administrator enables multi-VDOM on FortiGate to provide independent multiple security domains to each ICS network. Which statement ensures security protection is in place for all ICS networks?
As an OT network administrator, you are managing three FortiGate devices that each protect different levels on the Purdue model. To increase traffic visibility, you are required to implement additional security measures to detect exploits that affect PLCs. Which security sensor must implement to detect these types of industrial exploits?
An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM. Which step must the administrator take to achieve this task?
Which three common breach points can be found in a typical OT environment? (Choose three.)
Refer to the exhibit. Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)