FCP_FSM_AN-7.2 by Fortinet Actual Free Exam Questions And Answers

Question 1

What feature defines when an incident is created by FortiSIEM?

A. Rules

B. CMDB

C. Analytics

D. Cases

Discussion 0

Correct Answer: A Vote an answer

Question 2

Refer to the exhibit.

If you group the events by User and Count attributes, how many results will FortiSIEM display?

Discussion 0

Correct Answer: E Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 3

Refer to the exhibit.

A FortiSIEM device is receiving syslog events from a FortiGate firewall. The FortiSIEM analyst is trying to search the raw event logs for the last two hours that contain the keyword "udp".
However, they are getting no results from the search, which they know should be available.
Based on the filter shown in the exhibit, why are there no search results?

A. The Time Range value should be set to Real-Time.

B. The analyst selected AND in the Next column. This is the wrong Boolean operator.

C. The analyst selected = in the Operator column. That is the wrong operator.

D. The keyword is case sensitive. Instead of typing udp in the Value field, the analyst should type UDP.

Discussion 0

Correct Answer: C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 4

Refer to the exhibit.

Which two conditions will match this rule and subpatterns? (Choose two.)

A. A user connects to the wrong IP address for an RDP session five times.

B. A user runs a brute force password cracker against an RDP server.

C. A user using RDP over SSL VPN fails to log in to an application five times.

D. A user fails twice to log in when connecting through RDP.

Discussion 0

Correct Answer: B,C Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 5

Refer to the exhibit. Which value would be saved as the Event Type attribute by the default FortiSIEM parser?

A. sysUpTime

B. diskUtil

C. PHL_INFO

D. PH_DEV_MON_SYS_UPTIME

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Question 6

When using user and entity behavior analytics (UEBA) on FortiSIEM, what must you use to dynamically supply a list of IP addresses to a FortiGate device for blocking purposes?

A. API Connection

B. SCP

C. Lookup tables

D. Watchlists

Discussion 0

Correct Answer: D Vote an answer

Question 7

You need a model for predicting a target field based on other fields in a dataset and then trigger an anomaly if the value does not match the prediction. Which machine learning algorithm will build this type of model?

A. Forecasting

B. Clustering

C. Regression

D. Regression

Discussion 0

Correct Answer: D Vote an answer

Explanation: Only visible for Fast2test members. You can sign-up / login (it's free).

Fortinet FCP - FortiSIEM 7.2 Analyst - FCP_FSM_AN-7.2 Exam Practice Test

Contact Us

Useful Links

Latest Updated