Fortinet NSE6_FSR-7.3 Exam Practice Test Instant Access

Question 1

When deleting a user account on FortiSOAR, you must enter the user ID in which file on FortiSOAR?

AuserDelete.txt.

Bconfig_yml

Cscripts

DusersToDelete.txt

Answer : D

When deleting a user account in FortiSOAR, the user ID must be entered into the usersToDelete.txt file. This file is specifically used to list users that are marked for deletion. Once the user IDs are listed in this file, the system can process the deletion of these accounts as part of its user management operations. This method ensures that only specified users are deleted, as referenced in FortiSOAR's administrative controls.

Question 2

Which three roles are defined as SAML roles?

(Choose three.)

AService provider

BRole

CIdentity provider

DAttribute map

EPrincipal

Answer : A, C, E

Question 3

A security analyst has reported unauthorized access to System Configuration. You must review the user's current level of access, and then restrict their access according to your organization's requirements. As part of your auditing process, which two actions should you perform? (Choose two.)

ARemove the create, read, update, and delete (CRUD) permissions or roles that the user does not require.

BView the user's effective role permissions, and then investigate which role is providing that access.

CRemove all record ownership that is assigned to the user.

DReview the user's learn hierarchy to ensure that the appropriate relationships are configured.

Answer : B, D

To audit and restrict a user's access within FortiSOAR, particularly in response to unauthorized access reports, it's necessary to review the user's effective role permissions. This involves checking which roles grant the user access to the System Configuration module and adjusting as needed. Additionally, reviewing the user's team hierarchy ensures that the user's access aligns with the organization's policies. Misconfigurations in team relationships can sometimes inadvertently provide elevated access; hence, confirming that the team setup is correct is a critical part of the auditing process.

Question 4

Which two ports must be open between FortiSOAR HA nodes'* (Choose two.)

APort 5432

BPort 25

CPort 6380

DPort 9200

Answer : A, D

In a FortiSOAR HA configuration, certain ports must be open for communication between nodes. Port 5432 is required for PostgreSQL database communication, which is essential for data replication between HA nodes. Port 9200 is used by Elasticsearch, which FortiSOAR leverages for indexing and search functions across the nodes. These ports must be accessible between nodes to ensure seamless operation and data consistency within the cluster.

Question 5

Which SMS vendor does FortiSOAR support for two-factor authentication?

ATwilio

BGoogle Authenticator

C2factor

DTelesign

Answer : D

For two-factor authentication (2FA) via SMS, FortiSOAR supports integration with Telesign. This vendor provides SMS-based 2FA services, enabling FortiSOAR to leverage Telesign's API for sending verification codes as part of its security features. Telesign's service is compatible with FortiSOAR, ensuring secure user authentication when accessing the platform or certain features.

Question 6

An administrator is issuing the following command on a node trying to join a FortiSOAR duster as a standby: csadm ha join-cluster --status active ---role secondary --primary-node 10.0.1.160

The node fails to join the cluster. What is the issue?

AThe role value should be worker.

BThe primary node needs to be resolvable via FQDN.

CThe IP address should be for secondary-node Instead of primary-node.

DThe status value should be passive.

Answer : D

When joining a FortiSOAR cluster as a standby node, the correct status value should be passive. Using active would imply that the node is trying to join as an active node, which could cause conflicts in the cluster setup. In FortiSOAR, standby nodes must be set as passive to ensure they are recognized correctly and to avoid conflicts with the primary node or other active nodes within the cluster. Therefore, setting the status to passive will resolve the issue and allow the node to join the cluster as intended.

Question 7

View the exhibit:

What does the command output mean?

AThe configuration to enable database externalization has not been completed.

BThe local PostgreSQL database is disabled on the FortiSOAR instance.

CThe local PostgreSQL database is configured on the FortiSOAR instance.

DThere is no connectivity between the PostgreSQL databases of the primary and secondary FortiSOAR instances.

Answer : A

Fortinet NSE6_FSR-7.3 Fortinet NSE 6 - FortiSOAR 7.3 Administrator Exam Practice Test