Fortinet NSE6_OTS_AR-7.6 - Fortinet NSE 6 - OT Security 7.6 Architect Exam
Page: 1 / 7
Total 35 questions
Question #1 (Topic: Exam A)
Which industrial protocol does not support VLANs?
A. Ethernet POWERLINK
B. Ethernet over industrial protocol
C. EtherCAT
D. Modbus over TCP
Answer: C
Question #2 (Topic: Exam A)
Refer to the exhibit.
The Core Network Security Connectors page of the FortiGate-2 device is shown.
Which statement is correct?
The Core Network Security Connectors page of the FortiGate-2 device is shown.
Which statement is correct?
A. FortiGate-2 serves as Fabric Root.
B. You must enable Security Fabric Connection on the FortiGate-2 interface.
C. You must configure the FortiAnalyzer settings on FortiGate-2.
D. FortiGate-2 is not authorized on the root FortiGate.
Answer: D
Question #3 (Topic: Exam A)
Refer to the exhibits.
A partial Basic Event Handler page on FortiAnalyzer and the creation of a trigger in a FortiGate device are shown.
To improve the protection of your OT network, you want to automate the handling of compromised devices notified through FortiAnalyzer.
You have configured an event handler as shown in the exhibit. When you create the trigger on the FortiGate device, the Event handler name field does not provide the Alert_trigger option.
What two actions must you perform to make the Alert_trigger option available? (Choose two.)
A partial Basic Event Handler page on FortiAnalyzer and the creation of a trigger in a FortiGate device are shown.
To improve the protection of your OT network, you want to automate the handling of compromised devices notified through FortiAnalyzer.
You have configured an event handler as shown in the exhibit. When you create the trigger on the FortiGate device, the Event handler name field does not provide the Alert_trigger option.
What two actions must you perform to make the Alert_trigger option available? (Choose two.)
A. You must click + Create in the Event handler name field.
B. You must authorize the FortiGate device on FortiAnalyzer.
C. You must configure the FortiAnalyzer setting on the FortiGate device.
D. You must configure the trigger on the root FortiGate.
Answer: BC
Question #4 (Topic: Exam A)
Refer to the exhibit.
The OT devices behind the ruggedized FortiGate have vulnerabilities and you want to apply a virtual patching profile in the firewall policy.
Why is Virtual Patching not available in the Security Profiles section?
The OT devices behind the ruggedized FortiGate have vulnerabilities and you want to apply a virtual patching profile in the firewall policy.
Why is Virtual Patching not available in the Security Profiles section?
A. You must enable Virtual Patching in the Feature Visibility section.
B. You must have a ruggedized FortiGate allowing the virtual patching feature.
C. You must enable OT signatures.
D. You must have a valid OT security service license.
Answer: D
Question #5 (Topic: Exam A)
Refer to the exhibit.
A partial Application Sensor profile is shown.
When you apply this profile in a firewall policy, which two statements are correct? (Choose two.)
A partial Application Sensor profile is shown.
When you apply this profile in a firewall policy, which two statements are correct? (Choose two.)
A. OT signatures are enabled.
B. All OT protocols are monitored.
C. Modbus write commands are blocked.
D. A log is provided for each Modbus read holding registers command.
Answer: CD
