Updated Jan-2022 100% Cover Real NSE7_OTS-6.4 Exam Questions - 100% Pass Guarantee
Use Real Fortinet Dumps - 100% Free NSE7_OTS-6.4 Exam Dumps
Fortinet NSE7_OTS-6.4 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
NEW QUESTION 20
An OT administrator configured and ran a default application risk and control report in FortiAnalyzer to learn more about the key application crossing the network. However, the report output is empty despite the fact that some related real-time and historical logs are visible in the FortiAnalyzer.
What are two possible reasons why the report output was empty? (Choose two.)
- A. The administrator selected the wrong time period for the report.
- B. The administrator selected the wrong hcache table for the report.
- C. The administrator selected the wrong devices in the Devices section.
- D. The administrator selected the wrong logs to be indexed in FortiAnalyzer.
Answer: A,B
NEW QUESTION 21
Refer to the exhibit.
You are navigating through FortiSIEM in an OT network.
How do you view information presented in the exhibit and what does the FortiGate device security status tell you?
- A. In the summary dashboard and there are one or more high-severity security incidents for the FortiGate device.
- B. In the PCI logging dashboard and there are one or more high-severity security incidents for the FortiGate device.
- C. In the business service dashboard and there are one or more high-severity security incidents for the FortiGate device.
- D. In the widget dashboard and there are one or more high-severity incidents for the FortiGate device.
Answer: A
NEW QUESTION 22
Which three common breach points can be found in a typical OT environment? (Choose three.)
- A. Global hat
- B. RTU exploits
- C. Black hat
- D. VLAN exploits
- E. Hard hat
Answer: B,C,D
NEW QUESTION 23
Refer to the exhibit.
An OT architect has implemented a Modbus TCP with a simulation server Conpot to identify and control the Modus traffic in the OT network. The FortiGate-Edge device is configured with a software switch interface ssw-01.
Based on the topology shown in the exhibit, which two statements about the successful simulation of traffic between client and server are true? (Choose two.)
- A. Port5 is not a member of the software switch.
- B. NAT is disabled in the FortiGate firewall policy from port3 to ssw-01.
- C. The FortiGate-Edge device must be in NAT mode.
- D. The FortiGate devices is in offline IDS mode.
Answer: C,D
NEW QUESTION 24
What triggers Layer 2 polling of infrastructure devices connected in the network?
- A. A failed Layer 3 poll
- B. A matched profiling rule
- C. A matched security policy
- D. A linkup or linkdown trap
Answer: D
NEW QUESTION 25
An OT network administrator is trying to implement active authentication.
Which two methods should the administrator use to achieve this? (Choose two.)
- A. Role-based authentication on FortiNAC
- B. Local authentication on FortiGate
- C. FSSO authentication on FortiGate
- D. Two-factor authentication on FortiAuthenticator
Answer: A,D
NEW QUESTION 26
An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.
Which step must the administrator take to achieve this task?
- A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.
- B. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.
- C. Create a notification policy and define a script/remediation on FortiSIEM.
- D. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM.
Answer: D
NEW QUESTION 27
Which three methods of communication are used by FortiNAC to gather visibility information? (Choose three.)
- A. SNMP
- B. RADIUS
- C. TACACS
- D. API
- E. ICMP
Answer: A,B,D
NEW QUESTION 28
Refer to the exhibit and analyze the output.
Which statement about the output is true?
- A. This is a sample of FortiGate interface statistics.
- B. This is a sample of an SNMP temperature control event log.
- C. This is a sample of a PAM event type.
- D. This is a sample of a FortiAnalyzer system interface event log.
Answer: D
NEW QUESTION 29
You are investigating a series of incidents that occurred in the OT network over past 24 hours in FortiSIEM.
Which three FortiSIEM options can you use to investigate these incidents? (Choose three.)
- A. Overview
- B. Security
- C. List
- D. Risk
- E. IPS
Answer: A,C,D
NEW QUESTION 30
An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network.
What statement about the traffic between PLC1 and PLC2 is true?
- A. In order to communicate, PLC1 must be in the same VLAN as PLC2.
- B. The Layer 2 switches routes any traffic to the FortiGate device through an Ethernet link.
- C. The Layer 2 switch rewrites VLAN tags before sending traffic to the FortiGate device.
- D. PLC1 and PLC2 traffic must flow through the Layer-2 switch trunk link to the FortiGate device.
Answer: D
NEW QUESTION 31
An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication.
What is a possible reason?
- A. FortiNAC determined the user by DHCP fingerprint method
- B. Two-factor authentication is not configured with RADIUS authentication method
- C. FortiGate determined the user by passive authentication
- D. The user was determined by Security Fabric
Answer: A
NEW QUESTION 32
Refer to the exhibit, which shows a non-protected OT environment.
An administrator needs to implement proper protection on the OT network.
Which three steps should an administrator take to protect the OT network? (Choose three.)
- A. Deploy an edge FortiGate between the internet and an OT network as a one-arm sniffer.
- B. Configure firewall policies with industrial protocol sensors
- C. Deploy a FortiGate device within each ICS network.
- D. Use segmentation
- E. Configure firewall policies with web filter to protect the different ICS networks.
Answer: A,B,E
NEW QUESTION 33
An OT supervisor has configured LDAP and FSSO for the authentication. The goal is that all the users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication.
What should the OT supervisor do to achieve this on FortiGate?
- A. Configure a firewall policy with LDAP users and place it on the top of list of firewall policies.
- B. Under config user settings configure set auth-on-demand implicit.
- C. Configure a firewall policy with FSSO users and place it on the top of list of firewall policies.
- D. Enable two-factor authentication with FSSO.
Answer: B
NEW QUESTION 34
......
NSE7_OTS-6.4 Dumps PDF - NSE7_OTS-6.4 Real Exam Questions Answers: https://www.actualpdf.com/NSE7_OTS-6.4_exam-dumps.html
Realistic NSE7_OTS-6.4 Dumps Latest Practice Tests Dumps: https://drive.google.com/open?id=1Z5hw1o8JPgGp1w4U0oEWQV1ForoFjKtd
