Summer Certification Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
Fortinet
NSE 7 Network Security Architect
NSE7_OTS-7.2
Fortinet NSE 7 - OT Security 7.2 Questions and Answers

Pass the Fortinet NSE 7 Network Security Architect NSE7_OTS-7.2 Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam NSE7_OTS-7.2 Premium Access

View all detail and faqs for the NSE7_OTS-7.2 exam

Go to Exam

723 Students Passed

97% Average Score

93% Same Questions

Viewing page 2 out of 3 pages

Viewing questions 11-20 out of questions

Questions # 11:

Which statement is correct about processing matched rogue devices by FortiNAC?

Options:

FortiNAC cannot revalidate matched devices.

FortiNAC remembers the match ng rule of the rogue device

FortiNAC disables matching rule of previously-profiled rogue devices.

FortiNAC matches the rogue device with only one device profiling rule.

Answer

Questions # 12:

Refer to the exhibit.

Question # 12

You are creating a new operational technology (OT) rule to monitor Modbus protocol traffic on FortiSIEM

Which action must you take to ensure that all Modbus messages on the network match the rule?

Options:

Add a new condition to filter Modbus traffic based on the source TCP/UDP port

The condition on the SubPattern filter must use the AND logical operator

the Aggregate section, set the attribute value to equal to or greater than 0

In the Group By section remove all attributes that are not configured in the Filter section

Answer

Questions # 13:

What can be assigned using network access control policies?

Options:

Layer 3 polling intervals

FortiNAC device polling methods

Logical networks

Profiling rules

Answer

Questions # 14:

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

Options:

Enhanced point of connection details

Direct VLAN assignment

Adapter consolidation for multi-adapter hosts

Importation and classification of hosts

Answer

C, D

Explanation

The two benefits of a Nozomi integration with FortiNAC are enhanced point of connection details and importation and classification of hosts. Enhanced point of connection details allows for the identification and separation of traffic from multiple points of connection, such as Wi-Fi, wired, cellular, and VPN. Importation and classification of hosts allows for the automated importing and classification of host and device information into FortiNAC. This allows for better visibility and control of the network.

Questions # 15:

The OT network analyst runs different level of reports to quickly explore threats that exploit the network. Such reports can be run on all routers, switches, and firewalls. Which FortiSIEM reporting method helps to identify these type of exploits of image firmware files?

Options:

CMDB reports

Threat hunting reports

Compliance reports

OT/loT reports

Answer

Questions # 16:

When device profiling rules are enabled, which devices connected on the network are evaluated by the device profiling rules?

Options:

Known trusted devices, each time they change location

All connected devices, each time they connect

Rogue devices, only when they connect for the first time

Rogue devices, each time they connect

Answer

Questions # 17:

Which three Fortinet products can be used for device identification in an OT industrial control system (ICS)? (Choose three.)

Options:

FortiNAC

FortiManager

FortiAnalyzer

FortiSIEM

FortiGate

Answer

A, D, E

Explanation

A. FortiNAC - FortiNAC is a network access control solution that provides visibility and control over network devices. It can identify devices, enforce access policies, and automate threat response.

D. FortiSIEM - FortiSIEM is a security information and event management solution that can collect and analyze data from multiple sources, including network devices and servers. It can help identify potential security threats, as well as monitor compliance with security policies and regulations.

E. FortiAnalyzer - FortiAnalyzer is a central logging and reporting solution that collects and analyzes data from multiple sources, including FortiNAC and FortiSIEM. It can provide insights into network activity and help identify anomalies or security threats.

[Reference:, Fortinet NSE 7 - OT Security 6.4 Study Guide, Chapter 4: OT Security Devices, page 4-20., , ]

Questions # 18:

What two advantages does FortiNAC provide in the OT network? (Choose two.)

Options:

It can be used for IoT device detection.

It can be used for industrial intrusion detection and prevention.

It can be used for network micro-segmentation.

It can be used for device profiling.

Answer

A, D

Explanation

Typically, in a microsegmented network, NGFWs are used in conjunction with VLANs to implement security policies and to inspect and filter network communications. Fortinet FortiSwitch and FortiGate NGFW offer an integrated approach to microsegmentation.

Questions # 19:

Which three common breach points can be found in a typical OT environment? (Choose three.)