Summer Certification Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

FCP_FAZ_AN-7.6 Questions Bank

Fortinet NSE 5 - FortiAnalyzer 7.6 Analyst Questions and Answers

Question 9

(Refer to the exhibit.

Which two observations can you make after reviewing this log entry? (Choose two answers)

Options:

A.

This is a normalized log.

B.

This is a formatted view of the log.

C.

This is the original log that FortiAnalyzer received from FortiGate.

D.

This log is in a raw log format.

Question 10

Exhibit.

What does the data point at 12:20 indicate?

Options:

A.

The log insert log time is increasing.

B.

FortiAnalyzer is using its cache to avoid dropping logs.

C.

The performance of FortiAnalyzer is below the baseline.

D.

The sqiplugind service is caught up with the logs

Question 11

Which statement about sending notifications with incident updates is true?

Options:

A.

Each connector used can have different notification settings

B.

Each incident can send notification to a single external platform.

C.

You must configure an output profile to send notifications by email.

D.

Notifications can be sent only when an incident is created oi deleted.

Question 12

What is the purpose of using data selectors when configuring event handlers?

Options:

A.

They filter the types of logs that FortiAnalyzer can accept from registered devices.

B.

They download new filters can be used in event handlers.

C.

They apply their filter criteria to the entire event handler so that you don’t have to configure the same criteria in the individual rules.

D.

They are common filters that can be applied simultaneously to all event handlers.