NSE5_FSM-5.2 Fortinet Exam Questions and Free Practice Test

Question 7

What operating system is FortiSIEM based on?

A. Cent OS

B. Microsoft Windows

C. RedHat

D. Ubuntu

Correct Answer:A

Question 8

Refer to the exhibit.
NSE5_FSM-5.2 dumps exhibit
If events are grouped by Event Receive Time, Reporting IP, and User attributes in FortiSIEM, how many results will be displayed?

A. Eight results will be displayed

B. Four results will be displayed

C. Two results will be displayed

D. Unique attributes cannot be grouped

Correct Answer:D

Question 9

Which item is required to register a FortiSIEM appliance license?

A. Static storage

B. Static MAC address

C. Static IP address

D. Static Hardware ID

Correct Answer:D

Question 10

Device discovery information is stored in which database?

A. CMDB

B. Profile DB

C. Event DB

D. SVN DB

Correct Answer:A

Question 11

An administrator wants to search for events received from Linux and Windows agents.
Which attribute should the administrator use in search filters, to view events received from agents only.

A. External Event Receive Protocol

B. Event Received Proto Agents

C. External Event Receive Raw Logs

D. External Event Receive Agents

Correct Answer:A

Question 12

In the rules engine, which condition instructs FortiSIEM to summarize and count the matching evaluated data?

A. Time Window

B. Aggregation

C. Group By

D. Filters

Correct Answer:B

START NSE5_FSM-5.2 EXAM