NEW QUESTION 1
Refer to the exhibit.

Given the configurations on the FortiGate, which statement is true?

• A. FortiGate is configured with forward-domains to reduce unnecessary traffic.
• B. FortiGate is configured with forward-domains to forward only domain controller traffic.
• C. FortiGate is configured with forward-domains to forward only company domain website traffic.
• D. FortiGate is configured with forward-domains to filter and drop non-domain controller traffic.

Answer: A

NEW QUESTION 2
An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.
Which step must the administrator take to achieve this task?

• A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.
• B. Create a notification policy and define a script/remediation on FortiSIEM.
• C. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM.
• D. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.

Answer: C

NEW QUESTION 3
What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

• A. Enhanced point of connection details
• B. Direct VLAN assignment
• C. Adapter consolidation for multi-adapter hosts
• D. Importation and classification of hosts

Answer: AB

NEW QUESTION 4
When device profiling rules are enabled, which devices connected on the network are evaluated by the device profiling rules?

• A. Known trusted devices, each time they change location
• B. All connected devices, each time they connect
• C. Rogue devices, only when they connect for the first time
• D. Rogue devices, each time they connect

Answer: C

NEW QUESTION 5
Refer to the exhibit, which shows a non-protected OT environment.

An administrator needs to implement proper protection on the OT network.
Which three steps should an administrator take to protect the OT network? (Choose three.)

• A. Deploy an edge FortiGate between the internet and an OT network as a one-arm sniffer.
• B. Deploy a FortiGate device within each ICS network.
• C. Configure firewall policies with web filter to protect the different ICS networks.
• D. Configure firewall policies with industrial protocol sensors
• E. Use segmentation

Answer: ACD

NEW QUESTION 6
Refer to the exhibit.

An OT architect has implemented a Modbus TCP with a simulation server Conpot to identify and control the Modus traffic in the OT network. The FortiGate-Edge device is configured with a software switch interface ssw-01.
Based on the topology shown in the exhibit, which two statements about the successful simulation of traffic between client and server are true? (Choose two.)

• A. The FortiGate-Edge device must be in NAT mode.
• B. NAT is disabled in the FortiGate firewall policy from port3 to ssw-01.
• C. The FortiGate devices is in offline IDS mode.
• D. Port5 is not a member of the software switch.

Answer: AC

NEW QUESTION 7
An OT supervisor needs to protect their network by implementing security with an industrial signature database on the FortiGate device.
Which statement about the industrial signature database on FortiGate is true?

• A. A supervisor must purchase an industrial signature database and import it to the FortiGate.
• B. An administrator must create their own database using custom signatures.
• C. By default, the industrial database is enabled.
• D. A supervisor can enable it through the FortiGate CLI.

Answer: D

NEW QUESTION 8
You are investigating a series of incidents that occurred in the OT network over past 24 hours in FortiSIEM. Which three FortiSIEM options can you use to investigate these incidents? (Choose three.)

• A. Security
• B. IPS
• C. List
• D. Risk
• E. Overview

Answer: CDE

NEW QUESTION 9
Which three methods of communication are used by FortiNAC to gather visibility information? (Choose three.)

• A. SNMP
• B. ICMP
• C. API
• D. RADIUS
• E. TACACS

Answer: ACD

NEW QUESTION 10
When you create a user or host profile, which three criteria can you use? (Choose three.)

• A. Host or user group memberships
• B. Administrative group membership
• C. An existing access control policy
• D. Location
• E. Host or user attributes

Answer: ADE

NEW QUESTION 11
An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication.
What is a possible reason?

• A. FortiGate determined the user by passive authentication
• B. The user was determined by Security Fabric
• C. Two-factor authentication is not configured with RADIUS authentication method
• D. FortiNAC determined the user by DHCP fingerprint method

Answer: D

NEW QUESTION 12
......