Page: 1
/ 7
Total 31 questions
Consider the storage of anomaly baseline data that is calculated for different parameters.
Which database is used for storing this data?
- A. Event DB
- B. Profile DB
- C. SVN DB
- D. CMDB
Answer : B
Which two FortiSIEM components work together to provide real-time event correlation?
- A. Supervisor and worker
- B. Collector and Windows agent
- C. Worker and collector
- D. Supervisor and collector
Answer : A
Refer to the exhibit.
How was the FortiGate device discovered by FortiSIEM?
- A. GUI log discovery
- B. Syslog discovery
- C. Pull events discovery
- D. Auto log discovery
Answer : D
When configuring collectors located in geographically separated sites, what ports must be open on a front end firewall?
- A. HTTPS, from the collector to the worker upload settings address only
- B. HTTPS, from the collector to the supervisor and worker upload settings addresses
- C. HTTPS, from the Internet to the collector
- D. HTTPS, from the Internet to the collector and from the collector to the FortiSIEM cluster
Answer : B
An administrator is configuring FortiSIEM to discover network devices and receive syslog from network devices.
Which statement is correct?
- A. FortiSIEM uses privileged credentials to log in to devices and make network configuration changes.
- B. FortiSIEM automatically configures network devices to send syslog using the auto log discovery process.
- C. FortiSIEM automatically configures network devices to send syslog using the GUI discovery process.
- D. Syslog configuration must be done manually on devices by the network administrator.
Answer : D
31 days access 