NSE7_OTS-7.2試験無料問題集（74題）「Fortinet NSE 7

出題：1

Refer to the exhibit. You are assigned to implement a remote authentication server in the OT network. Which part of the hierarchy should the authentication server be part of?

A. Access

B. Core

C. Cloud

D. Edge

正解：D 解答を投票する

出題：2

What are two critical tasks the OT network auditors must perform during OT network risk assessment and management? (Choose two.)

A. Planning a threat hunting strategy

B. Implementing strategies to automatically bring PLCs offline

C. Evaluating what can go wrong before it happens

D. Creating disaster recovery plans to switch operations to a backup plant

正解：A,D 解答を投票する

出題：3

You are investigating a series of incidents that occurred in the OT network over past 24 hours in FortiSIEM.
Which three FortiSIEM options can you use to investigate these incidents? (Choose three.)

A. Risk

B. IPS

C. Security

D. List

E. Overview

正解：A,D,E 解答を投票する

出題：4

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third- party company while continuing to secure the ICS networks?

A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.

B. Configure outbound security policies with limited active authentication users of the third-party company.

C. Implement an additional firewall using an additional upstream link to the internet.

D. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.

正解：A 解答を投票する

出題：5

An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication.
What is a possible reason?

A. FortiGate determined the user by passive authentication

B. FortiNAC determined the user by DHCP fingerprint method

C. The user was determined by Security Fabric

D. Two-factor authentication is not configured with RADIUS authentication method

正解：A 解答を投票する

出題：6

Which three Fortinet products can you use for device identification in an OT industrial control system (ICS)? (Choose three.)

A. FortiAnalyzer

B. FortiManager

C. FortiNAC

D. FortiSIEM

E. FortiGate

正解：C,D,E 解答を投票する

出題：7

Which type of attack posed by skilled and malicious users of security level 4 (SL 4) of IEC 62443 is designed to defend against intentional attacks?

A. Users with low access to resources

B. Users with substantial resources

C. Users with unintentional operator error

D. Users with access to moderate resources

正解：C 解答を投票する

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」