Fortinet NSE7_OTS-7.2 Exam Practice Test Instant Access

Question 1

Which statement is correct about processing matched rogue devices by FortiNAC?

AFortiNAC cannot revalidate matched devices.

BFortiNAC remembers the match ng rule of the rogue device

CFortiNAC disables matching rule of previously-profiled rogue devices.

DFortiNAC matches the rogue device with only one device profiling rule.

Answer : D

Question 2

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

ARADIUS

BLink traps

CEnd station traffic monitoring

DMAC notification traps

Answer : A

FortiNAC can integrate with RADIUS servers to obtain MAC address information for wireless clients that authenticate through the RADIUS server.

Fortinet NSE 7 - OT Security 6.4 Study Guide, Chapter 4: OT Security Devices, page 4-28.

Question 3

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

AEnhanced point of connection details

BDirect VLAN assignment

CAdapter consolidation for multi-adapter hosts

DImportation and classification of hosts

Answer : C, D

The two benefits of a Nozomi integration with FortiNAC are enhanced point of connection details and importation and classification of hosts. Enhanced point of connection details allows for the identification and separation of traffic from multiple points of connection, such as Wi-Fi, wired, cellular, and VPN. Importation and classification of hosts allows for the automated importing and classification of host and device information into FortiNAC. This allows for better visibility and control of the network.

Question 4

Which three Fortinet products can be used for device identification in an OT industrial control system (ICS)? (Choose three.)

AFortiNAC

BFortiManager

CFortiAnalyzer

DFortiSIEM

EFortiGate

Answer : A, D, E

A) FortiNAC - FortiNAC is a network access control solution that provides visibility and control over network devices. It can identify devices, enforce access policies, and automate threat response.

D) FortiSIEM - FortiSIEM is a security information and event management solution that can collect and analyze data from multiple sources, including network devices and servers. It can help identify potential security threats, as well as monitor compliance with security policies and regulations.

E) FortiAnalyzer - FortiAnalyzer is a central logging and reporting solution that collects and analyzes data from multiple sources, including FortiNAC and FortiSIEM. It can provide insights into network activity and help identify anomalies or security threats.

Fortinet NSE 7 - OT Security 6.4 Study Guide, Chapter 4: OT Security Devices, page 4-20.

Question 5

Refer to the exhibit.

Given the configurations on the FortiGate, which statement is true?

AFortiGate is configured with forward-domains to reduce unnecessary traffic.

BFortiGate is configured with forward-domains to forward only domain controller traffic.

CFortiGate is configured with forward-domains to forward only company domain website traffic.

DFortiGate is configured with forward-domains to filter and drop non-domain controller traffic.

Answer : A

Question 6

An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.

Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

Fortinet NSE7_OTS-7.2 Fortinet NSE 7 - OT Security 7.2 Exam Practice Test