NSE5_EDR-5.0試験無料問題集（30題）「Fortinet NSE 5

出題：1

A FortiEDR security event is causing a performance issue with a third-parry application. What must you do first about the event?

A. Investigate the event to verify whether or not the application is safe

B. Immediately create an exception

C. Terminate the process and uninstall the third-party application

D. Contact Fortinet support

正解：B 解答を投票する

出題：2

Exhibit.

Based on the forensics data shown in the exhibit which two statements are true? (Choose two.)

A. The execution prevention policy has blocked this event.

B. The device cannot be remediated

C. Device C8092231196 has been isolated

D. The event was blocked because the certificate is unsigned

正解：C,D 解答を投票する

出題：3

What is the purpose of the Threat Hunting feature?

A. Execute playbooks to isolate affected collectors in the organization

B. Identify all instances of a known malicious file or hash and notify affected users

C. Find and delete all instances ofa known malicious file or hash inthe organization

D. Delete any file from any collector in the organization

正解：B 解答を投票する

NSE5_EDR-5.0試験無料問題集「Fortinet NSE 5 - FortiEDR 5.0 認定」