A and D) FortiAnalyzer_7.0_Study_Guide-Online.pdf page 165:
In order to configure IOC, you require the following:
• A one-year subscription to IOC. Note that FortiAnalyzer does include an evaluation license, but it is restrictive and only meant to give you an idea of how the feature works.
• A web filter services subscription on FortiGate device(s)
• Web filter policies on FortiGate device(s) that send traffic to FortiAnalyzer
Answer is A-D
Compromised Hosts or Indicators of Compromise service (IOC) is a licensed feature.
To view Compromised Hosts, you must turn on the UTM web filter of FortiGate devices and subscribe your FortiAnalyzer unit to FortiGuard to keep its local threat database synchronized with the FortiGuard threat database. See Subscribing FortiAnalyzer to FortiGuard.
Ref : https://docs.fortinet.com/document/fortianalyzer/6.4.0/administration-guide/137635/viewing-compromised-hosts
To view Compromised Hosts, you must turn on the UTM web filter of FortiGate devices and subscribe your FortiAnalyzer unit to FortiGuard to keep its local threat database synchronized with the FortiGuard threat database.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
jcarlosBO
4 months, 2 weeks agolucient
1 year agoD10SJoker
1 year, 1 month agopmorin
1 year, 1 month agosteed47
1 year, 1 month agoulya_taliesin
1 year, 1 month agoulya_taliesin
1 year, 1 month ago