NSE5_FSM-5.2問題集、Fortinet実際の試験問題

質問 1

An administrator wants to search for events received from Linux and Windows agents.
Which attribute should the administrator use in search filters, to view events received from agents only.

A. External Event Receive Raw Logs

B. External Event Receive Agents

C. Event Received Proto Agents

D. External Event Receive Protocol

正解: D

質問 2

Which two FortiSIEM components work together to provide real-time event correlation?

A. Supervisor and collector

B. Worker and collector

C. Collector and Windows agent

D. Supervisor and worker

正解: A

質問 3

Which process converts Raw log data to structured data?

A. Data classification

B. Data validation

C. Data enrichment

D. Data parsing

正解: D

質問 4

Which command displays the Linux agent status?

A. Service linux-agent status

B. Service Ao-linux-agent status

C. Service fortisiem-linux-agent status

D. Service fsm-linux-agent status

正解: C

質問 5

Which FortiSIEM components can do performance availability and performance monitoring?

A. Supervisor only

B. Supervisor and workers only

C. Supervisor, worker, and collector

D. Collectors only

正解: C

Fortinet NSE 5 - FortiSIEM 5.2 - NSE5_FSM-5.2 模擬練習