ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FSR-7.3
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which two ports must be open between FortiSOAR HA nodes'* (Choose two.)
Which two statements about FortiSOAR virtual instance deployment requirements are true? (Choose two.)
View the exhibit: What does the command output mean?
What are two use cases for configuring a FortiSOAR HA cluster? (Choose two.)
What are two different services that you can configure for monitoring system and cluster health statuses on FortiSOAR? (Choose two.)
Which playbook collection includes system-level playbooks that FortiSOAR uses to auto-populate date fields when the status of incident or alert records changes to Resolved or Closed?
Which CLI command will not work when the PostgreSQL database on FortiSOAR is externalized?
When configuring the system proxy on FortiSOAR. which two URLs should be accessible from the proxy server? (Choose two.)
A security analyst has reported unauthorized access to System Configuration. You must review the user's current level of access, and then restrict their access according to your organization's requirements. As part of your auditing process, which two actions should you perform? (Choose two.)
Refer to the exhibit. Which two statements about the recommendation engine are true? (Choose two.)

Question 12 - NSE6_FSR-7.3 discussion

Report
Export

A security analyst has reported unauthorized access to System Configuration. You must review the user's current level of access, and then restrict their access according to your organization's requirements. As part of your auditing process, which two actions should you perform? (Choose two.)

A.

Remove the create, read, update, and delete (CRUD) permissions or roles that the user does not require.

Answers
A.

Remove the create, read, update, and delete (CRUD) permissions or roles that the user does not require.

B.

View the user's effective role permissions, and then investigate which role is providing that access.

Answers
B.

View the user's effective role permissions, and then investigate which role is providing that access.

C.

Remove all record ownership that is assigned to the user.

Answers
C.

Remove all record ownership that is assigned to the user.

D.

Review the user's learn hierarchy to ensure that the appropriate relationships are configured.

Answers
D.

Review the user's learn hierarchy to ensure that the appropriate relationships are configured.

Suggested answer: B, D

Explanation:

To audit and restrict a user's access within FortiSOAR, particularly in response to unauthorized access reports, it's necessary to review the user's effective role permissions. This involves checking which roles grant the user access to the System Configuration module and adjusting as needed. Additionally, reviewing the user's team hierarchy ensures that the user's access aligns with the organization's policies. Misconfigurations in team relationships can sometimes inadvertently provide elevated access; hence, confirming that the team setup is correct is a critical part of the auditing process.

Show Answer
asked 12/10/2024
Victor Armando Sánchez
37 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms