Home

Home / Fortinet / NSE5_FAZ-7.2

Question list

List of questions

Question 1

(0)

What purposes does the auto-cache setting on reports serve? (Choose two.)

Question 2

(0)

If you upgrade your FortiAnalyzer firmware, what report elements can be affected?

Question 3

(0)

How does FortiAnalyzer retrieve specific log data from the database?

Question 4

(0)

On FortiAnalyzer, what is a wildcard administrator account?

Question 5

(0)

What are two of the key features of FortiAnalyzer? (Choose two.)

Question 6

(0)

What statements are true regarding the "store and upload" log transfer option between FortiAnalyzer and FortiGate? (Choose three.)

Question 7

(0)

Which statements are true regarding securing communications between FortiAnalyzer and FortiGate with IPsec? (Choose two.)

Question 8

(0)

Which two statements about log forwarding are true? (Choose two.)

Question 9

(0)

Which two methods can you use to send event notifications when an event occurs that matches a configured event handler? (Choose two.)

Question 10

(0)

Consider the CLI command: What is the purpose of the command?

Open VPLUS File

Convert VPLUS to PDF

Related questions

Which SQL query is in the correct order to query the database in the FortiAnslyzer?

Which two statements are true regarding ADOM modes? (Choose two.)

What purposes does the auto-cache setting on reports serve? (Choose two.)

Why run the command diagnose sql status sqlplugind?

Which statement correctly describes the management extensions available on FortiAnalyzer?

What is the recommended method of expanding disk space on a FortiAnalyzer VM?

Logs are being deleted from one of your ADOMs earlier that the configured setting for archiving in your data policy. What is the most likely problem?

Which two statements are correct regarding the export and import of playbooks? (Choose two.)

Which two elements are contained in a system backup created on FortiAnalyzer? (Choose two.)

An administrator fortinet, is able to view logs and perform device management tasks, such as adding and removing registered devices. However, administrator fortinet is not able to create a mall server that can be used to send email. What could be the problem?

Question 122 - NSE5_FAZ-7.2 discussion

Report

What happens when the IOC breach detection engine on FortiAnalyzer finds web logs that match a blocklisted IP address?

A.

The endpoint is marked as Compromised and. optionally, can be put in quarantine.

B.

FortiAnalyzer flags the associated host for further analysis.

C.

A new Infected entry is added for the corresponding endpoint.

D.

The detection engine classifies those logs as Suspicious

Show Answer

asked 18/09/2024

IllDisposed ToBTS

31 questions

User

Your answer: A B C D

0 comments

Sorted by

Leave a comment first