Podcast
Questions and Answers
Which pane is designed for a network and security operations center where multiple dashboards are displayed in large monitors in a SOC or NOC environment?
Which pane is designed for a network and security operations center where multiple dashboards are displayed in large monitors in a SOC or NOC environment?
What can you view on the Monitors dashboards?
What can you view on the Monitors dashboards?
What can you investigate on the Traffic dashboard?
What can you investigate on the Traffic dashboard?
What is listed as the major source of traffic from the host with the IP address 10.0.0.21?
What is listed as the major source of traffic from the host with the IP address 10.0.0.21?
Signup and view all the answers
What does log fetching allow FortiAnalyzer to do?
What does log fetching allow FortiAnalyzer to do?
Signup and view all the answers
What is the role of the FortiAnalyzer device that sends logs during log fetching?
What is the role of the FortiAnalyzer device that sends logs during log fetching?
Signup and view all the answers
How many log-fetching sessions can be established between two FortiAnalyzer devices?
How many log-fetching sessions can be established between two FortiAnalyzer devices?
Signup and view all the answers
What must be ensured for log fetching to work properly?
What must be ensured for log fetching to work properly?
Signup and view all the answers
What happens to logs outside the data policy constraints on the client?
What happens to logs outside the data policy constraints on the client?
Signup and view all the answers
When can you see the logs of devices in the client?
When can you see the logs of devices in the client?
Signup and view all the answers
Which column indicates the number of different threats associated with an IOC hit in FortiView?
Which column indicates the number of different threats associated with an IOC hit in FortiView?
Signup and view all the answers
What action can you take to acknowledge an IOC hit in FortiView?
What action can you take to acknowledge an IOC hit in FortiView?
Signup and view all the answers
What can you do to view more details and filter the view based on two categories for an IOC hit in FortiView?
What can you do to view more details and filter the view based on two categories for an IOC hit in FortiView?
Signup and view all the answers
What does the Blocklist category indicate for an IOC hit in FortiView?
What does the Blocklist category indicate for an IOC hit in FortiView?
Signup and view all the answers
What action can you take if you believe that an IP address or domain listed under the Detect Pattern column is valid for an IOC hit in FortiView?
What action can you take if you believe that an IP address or domain listed under the Detect Pattern column is valid for an IOC hit in FortiView?
Signup and view all the answers
What does the Suspicious category indicate for an IOC hit in FortiView?
What does the Suspicious category indicate for an IOC hit in FortiView?
Signup and view all the answers
What does Fortianalyzer do when an endpoint is flagged in the Suspicious category for an IOC hit in FortiView?
What does Fortianalyzer do when an endpoint is flagged in the Suspicious category for an IOC hit in FortiView?
Signup and view all the answers
What can you do to filter the entries in the IOC FortiView by specifying devices or a time period?
What can you do to filter the entries in the IOC FortiView by specifying devices or a time period?
Signup and view all the answers
By default, can you view acknowledged IOCs in FortiView?
By default, can you view acknowledged IOCs in FortiView?
Signup and view all the answers
What can you do when you double-click an entry in FortiView?
What can you do when you double-click an entry in FortiView?
Signup and view all the answers
