Podcast
Questions and Answers
Which pane is designed for a network and security operations center where multiple dashboards are displayed in large monitors in a SOC or NOC environment?
Which pane is designed for a network and security operations center where multiple dashboards are displayed in large monitors in a SOC or NOC environment?
- Widgets
- Monitors (correct)
- FortiClient software inventory
- Threats
What can you view on the Monitors dashboards?
What can you view on the Monitors dashboards?
- Threats and compromised hosts
- Wi-Fi and ZTNA
- Applications and system performance
- Network events and security alerts (correct)
What can you investigate on the Traffic dashboard?
What can you investigate on the Traffic dashboard?
- Compromised hosts
- DNS servers
- Applications generating traffic
- Top sources of traffic (correct)
What is listed as the major source of traffic from the host with the IP address 10.0.0.21?
What is listed as the major source of traffic from the host with the IP address 10.0.0.21?
What does log fetching allow FortiAnalyzer to do?
What does log fetching allow FortiAnalyzer to do?
What is the role of the FortiAnalyzer device that sends logs during log fetching?
What is the role of the FortiAnalyzer device that sends logs during log fetching?
How many log-fetching sessions can be established between two FortiAnalyzer devices?
How many log-fetching sessions can be established between two FortiAnalyzer devices?
What must be ensured for log fetching to work properly?
What must be ensured for log fetching to work properly?
What happens to logs outside the data policy constraints on the client?
What happens to logs outside the data policy constraints on the client?
When can you see the logs of devices in the client?
When can you see the logs of devices in the client?
Which column indicates the number of different threats associated with an IOC hit in FortiView?
Which column indicates the number of different threats associated with an IOC hit in FortiView?
What action can you take to acknowledge an IOC hit in FortiView?
What action can you take to acknowledge an IOC hit in FortiView?
What can you do to view more details and filter the view based on two categories for an IOC hit in FortiView?
What can you do to view more details and filter the view based on two categories for an IOC hit in FortiView?
What does the Blocklist category indicate for an IOC hit in FortiView?
What does the Blocklist category indicate for an IOC hit in FortiView?
What action can you take if you believe that an IP address or domain listed under the Detect Pattern column is valid for an IOC hit in FortiView?
What action can you take if you believe that an IP address or domain listed under the Detect Pattern column is valid for an IOC hit in FortiView?
What does the Suspicious category indicate for an IOC hit in FortiView?
What does the Suspicious category indicate for an IOC hit in FortiView?
What does Fortianalyzer do when an endpoint is flagged in the Suspicious category for an IOC hit in FortiView?
What does Fortianalyzer do when an endpoint is flagged in the Suspicious category for an IOC hit in FortiView?
What can you do to filter the entries in the IOC FortiView by specifying devices or a time period?
What can you do to filter the entries in the IOC FortiView by specifying devices or a time period?
By default, can you view acknowledged IOCs in FortiView?
By default, can you view acknowledged IOCs in FortiView?
What can you do when you double-click an entry in FortiView?
What can you do when you double-click an entry in FortiView?
Flashcards are hidden until you start studying
