Mastering Automation Stitches for Network Threat Monitoring

Questions and Answers

Which view in the FortiGate GUI displays the physical structure of your network and the connections between devices?

Device Management view

Physical Topology view (correct)

Logical Topology view

Security Fabric Rating view

What can you do in the topology views of the FortiGate GUI?

Authorize or deauthorize access devices

Upgrade devices

Connect to device CLI

All of the above (correct)

Which devices are shown in the topology views of the FortiGate GUI?

Devices with a security rating license

All devices in the network

FortiSwitch and FortiAP only (correct)

Fortinet and non-Fortinet devices

What are the three major scorecards in the Security Fabric Rating?

Security Posture, Fabric Coverage, Optimization

What does clicking a scorecard in the Security Fabric Rating do?

Displays itemized results and compliance recommendations

What is required to access the security rating service?

A security rating license

What can you do with the Security Fabric topology views in the FortiGate GUI?

All of the above

Which of the following is NOT an example of a source that can trigger an automation stitch?

Database queries

What is the default CPU utilization threshold for the High_CPU_Trigger custom automation trigger?

90%

Which of the following is NOT a part of the Collect_Diagnostics_Action custom automation action?

Sending an email notification

What happens if there is a failure in any action during sequential execution of automation actions?

Execution stops and no further actions are processed

Can action parameters from previous actions be used as input in parallel execution of automation actions?

No

How many triggers can be selected for a single automation stitch?

Only 1

How are multiple automation actions executed in a stitch?

In parallel

Which type of execution allows you to configure a delay between actions?

Sequential execution

What happens when using sequential execution in the FortiGate GUI?

Actions are executed in order

What occurs after the High_CPU_Trigger in the example shown on the slide?

Collect_Diagnostics_Action runs

What is the purpose of the 30-second delay in the example?

To allow time for CLI diagnostic commands to finish

What does the Email_Diagnostics_Action use as a parameter for the email message?

Output of CLI diagnostic commands

In the FortiGate GUI, what does parallel execution allow you to do?

Execute actions simultaneously

What is the purpose of the automation stitch in the example?

To execute actions sequentially

What can you do with action parameters when using sequential execution?

Use parameters from previous actions as input for the current action

What forms the body of the email message in the example?

%%results%%

Which of the following is NOT one of the major scorecards in the Security Rating page?

Compliance Recommendations

What does the Security Posture scorecard on the Security Rating page provide?

Executive summary of security focus areas

What does the term 'customer ranking' refer to in the context of the security audit information?

Ranking of customers based on security audit data

What can be done using automation stitches in the Security Fabric?

Automatic response to preprogrammed events

Where should stitches be configured in a Security Fabric?

On the root FortiGate

What is the purpose of configuring the Minimum interval setting for stitches?

To prevent repeat alert notifications

Is a Security Fabric a requirement to use stitches?

No