Home

Home / Fortinet / NSE5_FSM-6.3

Question list

List of questions

Question 1

(0)

An administrator is configuring FortiSIEM to discover network devices and receive syslog from network devices. Which statement is correct?

Question 2

(0)

Refer to the exhibit. It events are grouped by Event Type and User attributes in FortiSIEM. how many results will be displayed?

Question 3

(0)

Refer to the exhibit. An administrator is trying to identify an issue using an expression bated on the Expression Builder settings shown in the exhibit however, the error message shown in the exh

Question 4

(0)

Which three ports can be used to send Syslogs to FortiSIEM? (Choose three.)

Question 5

(0)

In the advanced analytical rules engine in FortiSIEM, multiple subpatterms can be referenced using which three operation?(Choose three.)

Question 6

(0)

Device discovery information is stored in which database?

Question 7

(0)

Which FortiSIEM components can do performance availability and performance monitoring?

Question 8

(0)

Which command displays the Linux agent status?

Question 9

(0)

Refer to the exhibit. If events are grouped by User. Source IP. and Application Category attributes in FortiSiEM. how many results will be displayed?

Question 10

(0)

If a performance rule is triggered repeatedly due to high CPU use, what occurs in the incident table?

Open VPLUS File

Convert VPLUS to PDF

Related questions

An administrator is using SNMP and WMI credentials to discover a Windows device. How will the WMI method handle this?

Refer to the exhibit. A FortiSIEM administrator wants to collect both SIEM event logs and performance and availability metrics (PAM) events from a Microsoft Windows server Which protocol should the administrator select in the Access Protocol drop-down list so that FortiSIEM will collect both SIEM and PAM events?

Which command displays the Linux agent status?

Refer to the exhibit. If events are grouped by Reporting IP, Event Type, and user attributes in FortiSIEM, how ,many results will be displayed?

In the rules engine, which condition instructs FortiSIEM to summarize and count the matching evaluated data?

Where do you configure rule notifications and automated remediation on FortiSIEM?

What are the four categories of incidents?

IF the reported packet loss is between 50% and 98%. which status is assigned to the device in the Availability column of summary dashboard?

An administrator is configuring FortiSIEM to discover network devices and receive syslog from network devices. Which statement is correct?

What are the four possible incident status values?

Question 45 - NSE5_FSM-6.3 discussion

Report

What are the four possible incident status values?

A.

Active, dosed, cleared, open

B.

Active, cleared, cleared manually, system cleared

C.

Active, closed, manual, resolved

D.

Active, auto cleared, manual, false positive

Show Answer

asked 18/09/2024

Jose Castillo

39 questions

User

Your answer: A B C D

0 comments

Sorted by

Leave a comment first