Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Fortinet
  5. NSE5_EDR-5.0

Free NSE5_EDR-5.0 Exam Braindumps (page: 4)

Page 3 of 12
PDF with 44 Questions

Refer to the exhibits.





The exhibits show application policy logs and application details. Collector C8092231196 is a member of the Finance group. What must an administrator do to block the FileZilia application?

  1. Deny application in Finance policy
  2. Assign Finance policy to DBA group
  3. Assign Finance policy to Default Collector Group
  4. Assign Simulation Communication Control Policy to DBA group

Answer(s): A



Refer to the exhibit.



Based on the threat hunting query shown in the exhibit which of the following is true?

  1. RDP connections will be blocked and classified as suspicious
  2. A security event will be triggered when the device attempts a RDP connection
  3. This query is included in other organizations
  4. The query will only check for network category

Answer(s): A



Which connectors can you use for the FortiEDR automated incident response? (Choose two.)

  1. FortiNAC
  2. FortiGate
  3. FortiSiem
  4. FortiSandbox

Answer(s): C,D



What is true about classifications assigned by Fortinet Cloud Service (FCS)?

  1. FCS revises the classification of the core based on its database.
  2. The core only assigns a classification if FCS is not available.
  3. FCS is responsible for all classifications.
  4. The core is responsible for all classifications if FCS playbooks are disabled.

Answer(s): C


Reference:

https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiGate_Cloud.pdf






Post your Comments and Discuss Fortinet NSE5_EDR-5.0 exam with other Community members:

Exam Discussions & Posts