Fortinet NSE7_OTS-7.2 Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.

What must you do to achieve this objective?

AYou must use a FortiAuthenticator.

BYou must register the same FortiToken on more than one FortiGate.

CYou must use the user self-registration server.

DYou must use a third-party RADIUS OTP server.

Answer : A

Question 2

As an OT network administrator you are required to generate reports that primarily use the same type of data sent to FortiSlEM These reports are based on the preloaded analytic searches

Which two actions can you take on FortiSlEM to enhance running reports for future use? (Choose two.)

AAutomate running these reports upon receiving new logs

BExport the preloaded analytics searches to an external syslog server

CCreate custom reports to process additional analytic searches

DSave the analytic searches and turn them into report definitions

Answer : C, D

Question 3

Which three methods of communication are used by FortiNAC to gather visibility information? (Choose three.)

ASNMP

BICMP

CAPI

DRADIUS

ETACACS

Answer : A, C, D

Question 4

An OT network architect needs to secure control area zones with a single network access policy to provision devices to any number of different networks.

On which device can this be accomplished?

AFortiGate

BFortiEDR

CFortiSwitch

DFortiNAC

Answer : D

Question 5

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

ARADIUS

BLink traps

CEnd station traffic monitoring

DMAC notification traps

Answer : A

FortiNAC can integrate with RADIUS servers to obtain MAC address information for wireless clients that authenticate through the RADIUS server.

Fortinet NSE 7 - OT Security 6.4 Study Guide, Chapter 4: OT Security Devices, page 4-28.

Question 6

in an operation technology (OT) network FortiAnalyzer is used to receive and process logs from responsible FortiGate devices

Which statement about why FortiAnalyzer is receiving and processing multiple tog messages from a given programmable logic controller (PLC) or remote terminal unit (RTU) is true'?

ATo determine which type of messages from the PLC or RTU causes issues in the plant

BTo isolate PLCs or RTUs in the event of external attacks

CTo help OT administrators troubleshoot and diagnose the OT network

DTo track external threats and prevent them attacking the OT network

Answer : D

Question 7

Refer to the exhibit.

You are navigating through FortiSIEM in an OT network.

How do you view information presented in the exhibit and what does the FortiGate device security status tell you?

AIn the PCI logging dashboard and there are one or more high-severity security incidents for the FortiGate device.

BIn the summary dashboard and there are one or more high-severity security incidents for the FortiGate device.

CIn the widget dashboard and there are one or more high-severity incidents for the FortiGate device.

DIn the business service dashboard and there are one or more high-severity security incidents for the FortiGate device.

Answer : B

Fortinet NSE 7 - OT Security 7.2 NSE7_OTS-7.2 Exam Practice Test