ExamTopics Logo
Mail Usteam@examtopics.com
Menu
Fortinet Discussions
exam questions

Exam NSE7_LED-7.0 All Questions

View all questions & answers for the NSE7_LED-7.0 exam
Go to Exam

Exam NSE7_LED-7.0 topic 1 question 21 discussion

Actual exam question from Fortinet's NSE7_LED-7.0
Question #: 21
Topic #: 1
[All NSE7_LED-7.0 Questions]

Refer to the exhibit.

Examine the FortiGate configuration, FortiAnalyzer logs, and FortiGate widget shown in the exhibit.
An administrator is testing the Security Fabric quarantine automation. The administrator added FortiAnalyzer to the Security Fabric, and configured an automation stitch to automatically quarantine compromised devices. The test device (10.0.2.1) is connected to a managed FortiSwitch device.
After trying to access a malicious website from the test device, the administrator verifies that FortiAnalyzer has a log for the test connection. However, the device is not getting quarantined by FortiGate, as shown in the quarantine widget.
Which two scenarios are likely to cause this issue? (Choose two.)

  • A. The web filtering rating service is not working.
  • B. FortiAnalyzer does not have a valid threat detection services license.
  • C. The device does not have FortiClient installed.
  • D. FortiAnalyzer does not consider the malicious website an indicator of compromise (IOC).
Show Suggested Answer Hide Answer
Suggested Answer: BD 🗳️
Community vote distribution
BD (71%)
BC (29%)
by Artbrut at March 21, 2024, 3:09 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
tonifan
3 weeks, 2 days ago
Selected Answer: BD
Study guide p. 289 / 290. How is FC involved?
upvoted 1 times
...
_zero
3 months, 2 weeks ago
Selected Answer: BD
I think that "C" is not true because I don't see EMS on the Core Network Security.
upvoted 1 times
...
cristianodavid
5 months ago
Hey, attention please. The origin interface is STUDENT to WAN, isn't ssl-vpn to WAN to use to Forticlient. study guide p. 289 / 290
upvoted 1 times
BBell29128
4 months, 1 week ago
Which study guide are you referencing?
upvoted 1 times
...
...
Artbrut
6 months, 2 weeks ago
Selected Answer: BC
Have to correct myself - B and C and https://community.fortinet.com/t5/FortiClient/Technical-Tip-Quarantine-FortiClient-endpoints-automatically/ta-p/300128
upvoted 2 times
...
Artbrut
6 months, 3 weeks ago
Selected Answer: BD
study guide p. 289 / 290
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
350-701
Denver, 1 minute ago