FCSS_ADA_AR-6.7無料問題集「Fortinet FCSS—Advanced Analytics 6.7 Architect」

質問 1

Refer to the exhibit.

The rule evaluates multiple VPN logon failures within a ten-minute window.
Consider the following VPN failure events received within a ten-minute window:

How many incidents are generated?

（A）3

（B）1

（C）2

（D）0

正解：D 解答を投票する

質問 2

Which two statements about phRuleWorker are true? (Choose two.)

（A）phRuleWorker exists on both the supervisor and workers.

（B）phRuleWorker uses a 60-second bucket as an evaluation window.

（C）phRuleWorker evaluates non-aggregate conditions as defined in subpattern filters of a rule in memory.

（D）phRuleWorker exists on the worker only.

正解：A、B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Where can you define automated remediation on FortiSIEM?

（A）Notification policy

（B）Authentication policy

（C）Integration policy

（D）Remediation policy

正解：A 解答を投票する

質問 4

A service provider purchased a 500-EPS license and configured a new collector with 100 EPS for customer A, and another collector with 200 EPS for customer B.
How much is in the remaining EPS pool for future customers and for MSSP itself?

（A）30

（B）50

（C）200

（D）100

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Refer to the exhibit.

How long has the UEBA agent been operationally down?

（A）21 Hours

（B）9 Hours

（C）20 Hours

（D）2 Hours

正解：D 解答を投票する

質問 6

Refer to the exhibit.

The window for this rule is 30 minutes.
What is this rule tracking?

（A）A sudden 1.50 times increase in WMI response times over a 30-minute time window

（B）A sudden 75% increase in WMI response times over a 30-minute time window

（C）A sudden 150% increase in WMI response times over a 30-minute time window

（D）A sudden 50% increase in WMI response times over a 30-minute time window

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

How can FortiSIEM baseline and profile reports assist in enhancing security?

（A）By generating a list of user passwords for verification purposes?

（B）By detailing the software version details of network devices?

（C）By providing insights into potential areas of vulnerability?

（D）By highlighting deviations from established norms?

正解：C、D 解答を投票する

質問 8

Refer to the exhibit.

The collector is registered and has pulled the license file from the supervisor.
What are the consequences of removing the license file?

（A）The license file must be pushed manually from the supervisor.

（B）The collector processes will go down.

（C）The collector must be re-registered with the supervisor to get the license file back.

（D）The collector must be redeployed to get the license file back.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Refer to the exhibit.

How long has the UEBA agent been operationally down?

（A）21 Hours

（B）9 Hours

（C）20 Hours

（D）2 Hours

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What is the primary purpose of remediation in FortiSIEM?

（A）To upgrade the FortiSIEM software?

（B）To change the visual theme of the FortiSIEM interface?

（C）To address and resolve detected security incidents?

（D）To add new users to the network?

正解：C 解答を投票する

FCSS_ADA_AR-6.7 無料問題集「Fortinet FCSS—Advanced Analytics 6.7 Architect」

弊社を連絡する

関連リンク

トップ試験