ExamGecko
Search Search Login
Home Home / Fortinet / FCP_FCT_AD-7.2
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. An administrator has restored the modified XML configuration file to FortiClient and sees the error shown in the exhibit. Based on the XML settings shown in the exhibit, what must the administrator do to resolve the issue with the XML configuration file?
Refer to the exhibit. Based on the settings shown in the exhibit, which two actions must the administrator take to make the endpoint compliant? (Choose two.)
What does FortiClient do as a fabric agent? (Choose two.)
Refer to the exhibit, which shows the Zero Trust Tagging Rule Set configuration. Which two statements about the rule set are true? (Choose two.)
Refer to the exhibit, which shows the endpoint summary information on FortiClient EMS. What two conclusions can you make based on the Remote-Client status shown above? (Choose two.)
An administrator has a requirement to add user authentication to the ZTNA access for remote or off-fabric users Which FortiGate feature is required m addition to ZTNA?
Refer to the exhibit. Based on the FortiClient tog details shown in the exhibit, which two statements ace true? (Choose two.)
Which three features does FortiClient endpoint security include? (Choose three.)
Which statement about the FortiClient enterprise management server is true?
Which statement about FortiClient enterprise management server is true?

Question 36 - FCP_FCT_AD-7.2 discussion

Report
Export

Refer to the exhibit.

Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

A.
Endpoints will be quarantined through EMS
Answers
A.
Endpoints will be quarantined through EMS
B.
Endpoints will be banned on FortiGate
Answers
B.
Endpoints will be banned on FortiGate
C.
An email notification will be sent for compromised endpoints
Answers
C.
An email notification will be sent for compromised endpoints
D.
Endpoints will be quarantined through FortiSwitch
Answers
D.
Endpoints will be quarantined through FortiSwitch
Suggested answer: A

Explanation:

Based on the Security Fabric automation settings shown in the exhibit:

The automation stitch is configured with a trigger for a 'Compromised Host.'

The action specified for this trigger is 'Quarantine FortiClient via EMS.'

This indicates that when an endpoint is detected as compromised, FortiClient EMS will quarantine the endpoint as part of the automation process.

Therefore, the action taken on compromised endpoints will be to quarantine them through EMS.

Reference

FortiGate Security 7.2 Study Guide, Automation Stitches and Actions Section

Fortinet Documentation on Configuring Automation Stitches and Quarantine Actions

Show Answer
asked 18/09/2024
Petya Pavlova
43 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms