NSE7_OTS-7.2試験無料問題集（74題）「Fortinet NSE 7

出題：1

Refer to the exhibit. You are assigned to implement a remote authentication server in the OT network. Which part of the hierarchy should the authentication server be part of?

A. Access

B. Core

C. Cloud

D. Edge

正解：D 解答を投票する

出題：2

Which type of attack posed by skilled and malicious users of security level 4 (SL 4) of IEC 62443 is designed to defend against intentional attacks?

A. Users with low access to resources

B. Users with substantial resources

C. Users with unintentional operator error

D. Users with access to moderate resources

正解：C 解答を投票する

出題：3

Refer to the exhibit. Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)

A. FortiEDR for endpoint detection

B. FortiGate for SD-WAN

C. FortiSIEM for security incident and event management

D. FortiNAC for network access control

E. FortiGate for application control and IPS

正解：A,D,E 解答を投票する

出題：4

An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.
How can the OT network architect achieve this goal?

A. Configure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

B. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.

C. Configure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.

D. Configure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third- party company while continuing to secure the ICS networks?

A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.

B. Configure outbound security policies with limited active authentication users of the third-party company.

C. Implement an additional firewall using an additional upstream link to the internet.

D. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.

正解：A 解答を投票する

出題：6

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

A. RADIUS

B. End station traffic monitoring

C. MAC notification traps

D. Link traps

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

The OT network analyst run different level of reports to quickly explore failures that could put the network at risk. Such reports can be about device performance. Which FortiSIEM reporting method helps to identify device failures?

NSE7_OTS-7.2試験無料問題集「Fortinet NSE 7 - OT Security 7.2 認定」