Fortinet NSE7_OTS-7.2 Exam Questions Instant Access

Question 1

Operational technology (OT) network analysts run different levels of reports to identify failures that could put the network at risk Some of these reports may be related to device performance

Which FortiSIEM reporting method helps identify device failures?

ADevice inventory reports

BPayment card industry (PCI) logging reports

CConfiguration management database (CMDB) operational reports

DBusiness service reports

Answer : C

Question 2

Which three Fortinet products can you use for device identification in an OT industrial control system (ICS)? (Choose three.)

AFortiSIEM

BFortiManager

CFortiAnalyzer

DFortiGate

EFortiNAC

Answer : A, D, E

Question 3

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

AEnhanced point of connection details

BDirect VLAN assignment

CAdapter consolidation for multi-adapter hosts

DImportation and classification of hosts

Answer : C, D

The two benefits of a Nozomi integration with FortiNAC are enhanced point of connection details and importation and classification of hosts. Enhanced point of connection details allows for the identification and separation of traffic from multiple points of connection, such as Wi-Fi, wired, cellular, and VPN. Importation and classification of hosts allows for the automated importing and classification of host and device information into FortiNAC. This allows for better visibility and control of the network.

Question 4

Refer to the exhibit.

Given the configurations on the FortiGate, which statement is true?

AFortiGate is configured with forward-domains to reduce unnecessary traffic.

BFortiGate is configured with forward-domains to forward only domain controller traffic.

CFortiGate is configured with forward-domains to forward only company domain website traffic.

DFortiGate is configured with forward-domains to filter and drop non-domain controller traffic.

Answer : A

Question 5

Which two statements about the Modbus protocol are true? (Choose two.)

AModbus uses UDP frames to transport MBAP and function codes.

BMost of the PLC brands come with a built-in Modbus module.

CYou can implement Modbus networking settings on internetworking devices.

DModbus is used to establish communication between intelligent devices.

Answer : B, C

Question 6

in an operation technology (OT) network FortiAnalyzer is used to receive and process logs from responsible FortiGate devices

Which statement about why FortiAnalyzer is receiving and processing multiple tog messages from a given programmable logic controller (PLC) or remote terminal unit (RTU) is true'?

ATo determine which type of messages from the PLC or RTU causes issues in the plant

BTo isolate PLCs or RTUs in the event of external attacks

CTo help OT administrators troubleshoot and diagnose the OT network

DTo track external threats and prevent them attacking the OT network

Answer : D

Question 7

An OT network administrator is trying to implement active authentication.

Which two methods should the administrator use to achieve this? (Choose two.)

ATwo-factor authentication on FortiAuthenticator

BRole-based authentication on FortiNAC

CFSSO authentication on FortiGate

DLocal authentication on FortiGate

Answer : A, D

Fortinet NSE 7 - OT Security 7.2 NSE7_OTS-7.2 Exam Questions