NSE7_OTS-6.4 Online Practice Questions and Answers

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

A. Enhanced point of connection details

B. Direct VLAN assignment

C. Adapter consolidation for multi-adapter hosts

D. Importation and classification of hosts

In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

A. RADIUS

B. Link traps

C. End station traffic monitoring

D. MAC notification traps

Which three common breach points can be found in a typical OT environment? (Choose three.)

A. Global hat

B. Hard hat

C. VLAN exploits

D. Black hat

E. RTU exploits

Refer to the exhibit.

You are navigating through FortiSIEM in an OT network.

How do you view information presented in the exhibit and what does the FortiGate device security status tell you?

A. In the PCI logging dashboard and there are one or more high-severity security incidents for the FortiGate device.

B. In the summary dashboard and there are one or more high-severity security incidents for the FortiGate device.

C. In the widget dashboard and there are one or more high-severity incidents for the FortiGate device.

D. In the business service dashboard and there are one or more high-severity security incidents for the FortiGate device.

An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.

Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

A. FortiSIEM and FortiManager

B. FortiSandbox and FortiSIEM

C. FortiSOAR and FortiSIEM

D. A syslog server and FortiSIEM

An OT network architect needs to secure control area zones with a single network access policy to provision devices to any number of different networks.

On which device can this be accomplished?

A. FortiGate

B. FortiEDR

C. FortiSwitch

D. FortiNAC

Refer to the exhibit.

Which statement about the interfaces shown in the exhibit is true?

A. port2, port2-vlan10, and port2-vlan1 are part of the software switch interface.

B. The VLAN ID of port1-vlan1 can be changed to the VLAN ID 10.

C. port1-vlan10 and port2-vlan10 are part of the same broadcast domain

D. port1, port1-vlan10, and port1-vlan1 are in different broadcast domains

What two advantages does FortiNAC provide in the OT network? (Choose two.)

A. It can be used for IoT device detection.

B. It can be used for industrial intrusion detection and prevention.

C. It can be used for network micro-segmentation.

D. It can be used for device profiling.

Refer to the exhibit.

Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)

A. FortiGate for SD-WAN

B. FortiGate for application control and IPS

C. FortiNAC for network access control

D. FortiSIEM for security incident and event management

E. FortiEDR for endpoint detection

As an OT administrator, it is important to understand how industrial protocols work in an OT network. Which communication method is used by the Modbus protocol?

A. It uses OSI Layer 2 and the primary device sends data based on request from secondary device.

B. It uses OSI Layer 2 and both the primary/secondary devices always send data during the communication.

C. It uses OSI Layer 2 and both the primary/secondary devices send data based on a matching token ring.

D. It uses OSI Layer 2 and the secondary device sends data based on request from primary device.