Most Recent Fortinet NSE7_OTS-7.2 Exam Questions & Answers

Prepare for the Fortinet NSE 7 - OT Security 7.2 exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the Fortinet NSE7_OTS-7.2 exam and achieve success.

The questions for NSE7_OTS-7.2 were last updated on Nov 19, 2024.

Viewing page 1 out of 12 pages.
Viewing questions 1-5 out of 62 questions

Get All 62 Questions & Answers

Question No. 1

Which statemenl about the IEC 104 protocol is true?

AIEC 104 is used for telecontrol SCADA in electrical engineering applications.

BIEC 104 is IEC 101 compliant in old SCADA systems.

CIEC 104 protects data transmission between OT devices and services.

DIEC 104 uses non-TCP/IP standards.

Show Answer

Correct Answer: A

Question No. 2

An OT supervisor has configured LDAP and FSSO for the authentication. The goal is that all the users be authenticated against passive authentication first and, if passive authentication is not successful, then users should be challenged with active authentication.

What should the OT supervisor do to achieve this on FortiGate?

AConfigure a firewall policy with LDAP users and place it on the top of list of firewall policies.

BEnable two-factor authentication with FSSO.

CConfigure a firewall policy with FSSO users and place it on the top of list of firewall policies.

DUnder config user settings configure set auth-on-demand implicit.

Show Answer

Correct Answer: C

The OT supervisor should configure a firewall policy with FSSO users and place it on the top of list of firewall policies in order to achieve the goal of authenticating users against passive authentication first and, if passive authentication is not successful, then challenging them with active authentication.

Question No. 3

Refer to the exhibit.

Based on the Purdue model, which three measures can be implemented in the control area zone using the Fortinet Security Fabric? (Choose three.)

AFortiGate for SD-WAN

BFortiGate for application control and IPS

CFortiNAC for network access control

DFortiSIEM for security incident and event management

EFortiEDR for endpoint detection

Show Answer

Correct Answer: B, C, E

Question No. 4

Refer to the exhibit

In the topology shown in the exhibit, both PLCs can communicate directly with each other, without going through the firewall.

Which statement about the topology is true?

APLCs use IEEE802.1Q protocol to communicate each other.

BAn administrator can create firewall policies in the switch to secure between PLCs.

CThis integration solution expands VLAN capabilities from Layer 2 to Layer 3.

DThere is no micro-segmentation in this topology.

Show Answer

Correct Answer: D

Question No. 5

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT can send traffic to each other at the Layer 2 level.

What must the OT admin do to prevent Layer 2-level communication between PLC-3 and CLIENT?

ASet a unique forward domain for each interface of the software switch.

BCreate a VLAN for each device and replace the current FGT-2 software switch members.

CEnable explicit intra-switch policy to require firewall policies on FGT-2.

DImplement policy routes on FGT-2 to control traffic between devices.

Show Answer

Correct Answer: A, B

Unlock All Questions for Fortinet NSE7_OTS-7.2 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 62 Questions & Answers