Refer to the exhibit.
An operational technology rule is created and successfully activated to monitor the Modbus protocol on FortiSIEM. However, the rule does not trigger incidents despite Modbus traffic and application logs being received correctly by FortiSIEM.
Which statement correctly describes the issue on the rule configuration?
A. The Aggregate attribute COUNT expression is incompatible with the filters.
B. The SubPattern is missing the filter to match the Modbus protocol.
C. The first condition on the SubPattern filter must use the OR logical operator.
D. The attributes in the Group By section must match the ones in Fitters section.
正解:D
質問 2:
The OT network analyst runs different level of reports to quickly explore threats that exploit the network. Such reports can be run on all routers, switches, and firewalls. Which FortiSIEM reporting method helps to identify these type of exploits of image firmware files?
A. CMDB reports
B. OT/loT reports
C. Threat hunting reports
D. Compliance reports
正解:C
質問 3:
The OT network analyst run different level of reports to quickly explore failures that could put the network at risk. Such reports can be about device performance. Which FortiSIEM reporting method helps to identify device failures?
A. Business service reports
B. Active dependent rules reports
C. Device inventory reports
D. CMDB operational reports
正解:D
質問 4:
Refer to the exhibit.
You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.
What must you do to achieve this objective?
A. You must use a FortiAuthenticator.
B. You must use the user self-registration server.
C. You must register the same FortiToken on more than one FortiGate.
D. You must use a third-party RADIUS OTP server.
正解:A
質問 5:
Which statemenl about the IEC 104 protocol is true?
A. IEC 104 protects data transmission between OT devices and services.
B. IEC 104 is used for telecontrol SCADA in electrical engineering applications.
C. IEC 104 is IEC 101 compliant in old SCADA systems.
D. IEC 104 uses non-TCP/IP standards.
正解:B
Kouno -
NSE7_OTS-7.2合格できてとても嬉しいです。ほんとうに内容は素晴らしいと思います