- All Exams Instant Download
To determine whether or not syslog is being received from a network device, which is the best command from the backend?
To determine whether or not syslog is being received from a network device, which is the best command from the backend?A . tcpdumpB . phDeviceTestC . netcatD . phSyslogRecorderView AnswerAnswer: A
If a performance rule is triggered repeatedly due to high CPU use. what occurs m the incident table?
If a performance rule is triggered repeatedly due to high CPU use. what occurs m the incident table?A . A new incident is created each time the rule is triggered, and the First Seen and Last Seen times are updated.B . The incident status changes to Repeated and the First...
Which FortiSIEM components are capable of performing device discovery?
Which FortiSIEM components are capable of performing device discovery?A . FortiSIEM Windows agentB . WorkerC . FortiSIEM Linux agentD . CollectorView AnswerAnswer: D
Under role management, which option does the FortiSIEM administrator need to configure to achieve this scenario?
A FortiSIEM administrator wants to restrict a network administrator to running searches for only firewall devices. Under role management, which option does the FortiSIEM administrator need to configure to achieve this scenario?A . CMDB Report ConditionsB . Data ConditionsC . UI AccessView AnswerAnswer: B
If the reported packet loss is between 50% and 98%. which status is assigned to the device in the Availability column of summary dashboard?
If the reported packet loss is between 50% and 98%. which status is assigned to the device in the Availability column of summary dashboard?A . Down status is assigned because of packet loss.B . Up status is assigned because of received packetsC . Critical status is assigned because of reduction...
In FotiSlEM enterprise licensing mode, if the link between the collector and data center FortiSlEM cluster a down what happens?
In FotiSlEM enterprise licensing mode, if the link between the collector and data center FortiSlEM cluster a down what happens?A . The collector drops incoming events like syslog. but slops performance collectionB . The collector continues performance collection of devices, but stops receiving syslogC . The collector buffers eventsD ....
What protocol can be used to collect Windows event logs in an agentless method?
What protocol can be used to collect Windows event logs in an agentless method?A . SSHB . SNMPC . WMID . SMTPView AnswerAnswer: C
To determine whether or not syslog is being received from a network device, which is the best command from the backend?
To determine whether or not syslog is being received from a network device, which is the best command from the backend?A . tcpdumpB . phDeviceTestC . netcatD . phSyslogRecorderView AnswerAnswer: A
If a performance rule is triggered repeatedly due to high CPU use. what occurs m the incident table?
If a performance rule is triggered repeatedly due to high CPU use. what occurs m the incident table?A . A new incident is created each time the rule is triggered, and the First Seen and Last Seen times are updated.B . The incident status changes to Repeated and the First...
What is a prerequisite for FortiSIEM Linux agent installation?
What is a prerequisite for FortiSIEM Linux agent installation?A . The web server must be installed on the Linux server being monitoredB . The auditd service must be installed on the Linux server being monitoredC . The Linux agent manager server must be installed.D . Both the web server and...
