Fortinet NSE7_OTS-7.2 - Fortinet NSE 7 - OT Security 7.2 Exam
Page: 2 / 9
Total 42 questions
Question #6 (Topic: Exam A)
An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted for credentials during authentication.
What is a possible reason?
What is a possible reason?
A. Two-factor authentication is not configured with the RADIUS authentication method.
B. The user was determined by the Security Fabric.
C. FortiGate determined the user by passive authentication.
D. FortiNAC determined the user by the DHCP fingerprint method.
Answer: C
Question #7 (Topic: Exam A)
Refer to the exhibit.
From your analysis of the output, which statement about the output is true?
From your analysis of the output, which statement about the output is true?
A. This is a sample of an SNMP temperature control event log.
B. This is a sample of a FortiAnalyzer system interface event log.
C. This is a sample of a PAM event type.
D. This is a sample of FortiGate interface statistics.
Answer: D
Question #8 (Topic: Exam A)
Refer to the exhibit.
Which statement is true about application control inspection?
Which statement is true about application control inspection?
A. The industrial application control inspection process is unique among application categories.
B. Security actions cannot be applied on the lowest level of the hierarchy.
C. You can control security actions only on the parent-level application signature.
D. The parent signature takes precedence over the child application signature.
Answer: D
Question #9 (Topic: Exam A)
Refer to the exhibit.
You are assigned to implement a remote authentication server in the OT network.
Which part of the hierarchy should the authentication server be part of?
You are assigned to implement a remote authentication server in the OT network.
Which part of the hierarchy should the authentication server be part of?
A. Edge
B. Cloud
C. Core
D. Access
Answer: C
Question #10 (Topic: Exam A)
With the limit of using one firewall device, the administrator enables multi-VDOM on FortiGate to provide independent multiple security domains to each ICS network.
Which statement ensures security protection is in place for all ICS networks?
Which statement ensures security protection is in place for all ICS networks?
A. Each traffic VDOM must have a direct connection to FortiGuard services to receive the required security updates.
B. The management VDOM must have access to all global security services.
C. Each VDOM must have an independent security license.
D. Traffic between VDOMs must pass through the physical interfaces of FortiGate to check for security incidents.
Answer: B
