ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FAZ-7.2
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which SQL query is in the correct order to query the database in the FortiAnslyzer?
Which two statements are true regarding ADOM modes? (Choose two.)
What purposes does the auto-cache setting on reports serve? (Choose two.)
Why run the command diagnose sql status sqlplugind?
Which statement correctly describes the management extensions available on FortiAnalyzer?
What is the recommended method of expanding disk space on a FortiAnalyzer VM?
Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?
Which two statements are correct regarding the export and import of playbooks? (Choose two.)
Which two elements are contained in a system backup created on FortiAnalyzer? (Choose two.)
An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email. What could be the problem?

Question 25 - NSE5_FAZ-7.2 discussion

Report
Export

For which two purposes would you use the command set log checksum? (Choose two.)

A.
To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server
Answers
A.
To help protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server
B.
To prevent log modification or tampering
Answers
B.
To prevent log modification or tampering
C.
To encrypt log communications
Answers
C.
To encrypt log communications
D.
To send an identical set of logs to a second logging server
Answers
D.
To send an identical set of logs to a second logging server
Suggested answer: A, B

Explanation:

To prevent logs from being tampered with while in storage, you can add a log checksum using the config system global command. You can configure FortiAnalyzer to record a log file hash value, timestamp, and authentication code when the log is rolled and archived and when the log is uploaded (if that feature is enabled). This can also help against man-in-the-middle only for the transmission from FortiAnalyzer to an SSH File Transfer Protocol (SFTP) server during log upload.

FortiAnalyzer_7.0_Study_Guide-Online page 149

Show Answer
asked 18/09/2024
bijay ghimire
37 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms