ExamGecko
Search Search Login
Home Home / Fortinet / NSE5_FSM-6.3
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An administrator is using SNMP and WMI credentials to discover a Windows device. How will the WMI method handle this?
Refer to the exhibit. A FortiSIEM administrator wants to collect both SIEM event logs and performance and availability metrics (PAM) events from a Microsoft Windows server Which protocol should the administrator select in the Access Protocol drop-down list so that FortiSIEM will collect both SIEM and PAM events?
Which command displays the Linux agent status?
In the rules engine, which condition instructs FortiSIEM to summarize and count the matching evaluated data?
Where do you configure rule notifications and automated remediation on FortiSIEM?
IF the reported packet loss is between 50% and 98%. which status is assigned to the device in the Availability column of summary dashboard?
What are the four possible incident status values?
Refer to the exhibit. If events are grouped by Reporting IP, Event Type, and user attributes in FortiSIEM, how ,many results will be displayed?
What are the four categories of incidents?
Refer to the exhibit. Which value will FortiSIEM use to populate the Event Type field?

Question 1 - NSE5_FSM-6.3 discussion

Report
Export

An administrator is configuring FortiSIEM to discover network devices and receive syslog from network devices. Which statement is correct?

A.
FortiSIEM uses privileged credentials to tog in to devices and make network configuration changes.
Answers
A.
FortiSIEM uses privileged credentials to tog in to devices and make network configuration changes.
B.
FortiSIEM automatically configures network devices to send syslog using the auto log discovery process.
Answers
B.
FortiSIEM automatically configures network devices to send syslog using the auto log discovery process.
C.
FortiSIEM automatically configures network devices to send syslog using the GUI discovery process
Answers
C.
FortiSIEM automatically configures network devices to send syslog using the GUI discovery process
D.
Syslog configuration must be done manually on devices by the network administrator.
Answers
D.
Syslog configuration must be done manually on devices by the network administrator.
Suggested answer: D

Explanation:

Syslog Configuration in FortiSIEM: For FortiSIEM to receive syslog messages from network devices, those devices need to be properly configured to send syslog data to FortiSIEM.

Manual Configuration Requirement: FortiSIEM does not automatically configure network devices to send syslog messages. Instead, this configuration must be performed manually by the network administrator.

Process Overview: The network administrator must access each device and set up the syslog parameters to direct log data to the FortiSIEM collector's IP address.

Discovery Process: While FortiSIEM can discover network devices using SNMP, WMI, and other protocols, the configuration of syslog on these devices is beyond its scope and requires manual intervention.

Reference: FortiSIEM 6.3 User Guide, Device Configuration and Syslog Integration sections, which explain the requirements and steps for setting up syslog forwarding on network devices.

Show Answer
asked 18/09/2024
Jean-Gaetan Roche
31 questions
NextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms