[2025年05月30日]Fast2test NSE7_OTS-7.2問題集でNSE 7 Network Security Architect合格確定させる練習問題集
Fortinet NSE7_OTS-7.2実際にある問題とブレーン問題集
Fortinet NSE 7 - OT Security 7.2 認定試験は、ネットワークセグメンテーション、脅威検出と防止、リスク管理、コンプライアンスなど、OTセキュリティの様々な領域をカバーしています。この試験は、従来のITセキュリティソリューションとOTセキュリティソリューションの統合についてもカバーしており、組織に包括的なセキュリティを提供します。
質問 # 20
What two advantages does FortiNAC provide in the OT network? (Choose two.)
- A. It can be used for network micro-segmentation.
- B. It can be used for IoT device detection.
- C. It can be used for device profiling.
- D. It can be used for industrial intrusion detection and prevention.
正解:B、C
解説:
Explanation
Typically, in a microsegmented network, NGFWs are used in conjunction with VLANs to implement security policies and to inspect and filter network communications. Fortinet FortiSwitch and FortiGate NGFW offer an integrated approach to microsegmentation.
質問 # 21
Refer to the exhibit.
Given the configurations on the FortiGate, which statement is true?
- A. FortiGate is configured with forward-domains to forward only company domain website traffic.
- B. FortiGate is configured with forward-domains to forward only domain controller traffic.
- C. FortiGate is configured with forward-domains to filter and drop non-domain controller traffic.
- D. FortiGate is configured with forward-domains to reduce unnecessary traffic.
正解:D
質問 # 22
An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication.
What is a possible reason?
- A. Two-factor authentication is not configured with RADIUS authentication method
- B. FortiGate determined the user by passive authentication
- C. FortiNAC determined the user by DHCP fingerprint method
- D. The user was determined by Security Fabric
正解:B
質問 # 23
Which two statements about the Modbus protocol are true? (Choose two.)
- A. You can implement Modbus networking settings on internetworking devices.
- B. Modbus is used to establish communication between intelligent devices.
- C. Most of the PLC brands come with a built-in Modbus module.
- D. Modbus uses UDP frames to transport MBAP and function codes.
正解:A、C
質問 # 24
An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.
Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?
- A. FortiSIEM and FortiManager
- B. A syslog server and FortiSIEM
- C. FortiSandbox and FortiSIEM
- D. FortiSOAR and FortiSIEM
正解:D
質問 # 25
An OT customer is using multiple FortiGate devices in their network to implement two-factor authentication with hardware FortiTokens. A supervisor is carrying multiple FortiTokens to be used when logging in to a critical server behind different FortiGate devices.
As an OT network architect, which approach must you take in order to assign one token per user and still use two-factor authentication on multiple FortiGate devices?
- A. Implement FortiAuthenticator with FortiTokens provisioned for each user, and configure FortiAuthenticator as remote authentication server on all FortiGate devices in the OT network.
- B. Implement a FortiManager and manage all FortiGate devices in the OT network to share the FortiTokens database.
- C. Provision the Edge-FortiGate device with all the FortiTokens and configure it as a remote authentication server on other FortiGate devices.
- D. Configure FSSO-based two-factor authentication.
正解:A
質問 # 26
Refer to the exhibit. An operational technology rule is created and successfully activated to monitor the Modbus protocol on FortiSIEM. However, the rule does not trigger incidents despite Modbus traffic and application logs being received correctly by FortiSIEM.
Which statement correctly describes the issue on the rule configuration?
- A. The Aggregate attribute COUNT expression is incompatible with the filters.
- B. The first condition on the SubPattern filter must use the OR logical operator.
- C. The SubPattern is missing the filter to match the Modbus protocol.
- D. The attributes in the Group By section must match the ones in Fitters section.
正解:D
質問 # 27
A supervisor is configuring a software switch on a FortiGate device. What must the supervisor configure on FortiGate to control the traffic between member interfaces on the software switch, using firewall policies?
- A. The supervisor must configure the software switch with at least one wireless interface and one VLAN interface.
- B. The supervisor must configure a separate forward domain for the software switch.
- C. The supervisor must add different VLAN interfaces to the software switch.
- D. The supervisor must configure intra-switch-policy to explicit.
正解:D
質問 # 28
An OT network administrator is trying to implement active authentication. Which two methods should the administrator use to achieve this? (Choose two.)
- A. Role-based authentication on FortiNAC
- B. Local authentication on FortiGate
- C. Two-factor authentication on FortiAuthenticator
- D. FSSO authentication on FortiGate
正解:B、C
質問 # 29
Which three protocols are used as industrial Ethernet protocols? (Choose three.)
- A. RJ45
- B. M12
- C. EtherCAT
- D. EtherNet/IP
- E. PROFINET
正解:C、D、E
質問 # 30
An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources. As the OT network administrator, what is the best scenario to provide external access to the third- party company while continuing to secure the ICS networks?
- A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.
- B. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.
- C. Implement an additional firewall using an additional upstream link to the internet.
- D. Configure outbound security policies with limited active authentication users of the third-party company.
正解:A
質問 # 31
Refer to the exhibits. Which statement is true about the traffic passing through to PLC-2?
- A. SSL Inspection must be set to deep-inspection to correctly apply application control.
- B. The application filter overrides the default action of some IEC 104 signatures.
- C. IPS must be enabled to inspect application signatures.
- D. IEC 104 signatures are all allowed except the C.BO.NA 1 signature.
正解:B
質問 # 32
As an OT network administrator, you are managing three FortiGate devices that each protect different levels on the Purdue model. To increase traffic visibility, you are required to implement additional security measures to detect exploits that affect PLCs.
Which security sensor must implement to detect these types of industrial exploits?
- A. Deep packet inspection (DPI)
- B. Antivirus inspection
- C. Application control
- D. Intrusion prevention system (IPS)
正解:A
質問 # 33
With the limit of using one firewall device, the administrator enables multi-VDOM on FortiGate to provide independent multiple security domains to each ICS network. Which statement ensures security protection is in place for all ICS networks?
- A. Each VDOM must have an independent security license.
- B. Traffic between VDOMs must pass through the physical interfaces of FortiGate to check for security incidents.
- C. The management VDOM must have access to all global security services.
- D. Each traffic VDOM must have a direct connection to FortiGuard services to receive the required security updates.
正解:B
質問 # 34
An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network. Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)
- A. You must set correct operator in event handler to trigger an event.
- B. You can automate SOC tasks through playbooks.
- C. Each playbook can include multiple triggers.
- D. You cannot use Windows and Linux hosts security events with FortiSoC.
正解:A、B
解説:
Ref: https://docs.fortinet.com/document/fortianalyzer/7.0.0/administration-guide/268882/fortisoc
質問 # 35
An OT supervisor needs to protect their network by implementing security with an industrial signature database on the FortiGate device.
Which statement about the industrial signature database on FortiGate is true?
- A. An administrator must create their own database using custom signatures.
- B. By default, the industrial database is enabled.
- C. A supervisor must purchase an industrial signature database and import it to the FortiGate.
- D. A supervisor can enable it through the FortiGate CLI.
正解:D
質問 # 36
An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.
Which step must the administrator take to achieve this task?
- A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.
- B. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM.
- C. Create a notification policy and define a script/remediation on FortiSIEM.
- D. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.
正解:C
解説:
https://fusecommunity.fortinet.com/blogs/silviu/2022/04/12/fortisiempublishingscript
質問 # 37
Refer to the exhibit.
PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT cannot send traffic to each other.
Which two statements about the traffic between PCL-1 and PLC-2 are true? (Choose two.)
- A. Micro-segmentation on FGT-2 prevents direct device-to-device communication.
- B. FGT-2 controls intra-VLAN traffic through firewall policies.
- C. The switch on FGT-2 must be hardware to implement micro-segmentation.
- D. Traffic must be inspected by FGT-EDGE in OT networks.
正解:A、B
質問 # 38
Which three methods of communication are used by FortiNAC to gather visibility information?
(Choose three.)
- A. SNMP
- B. RADIUS
- C. TACACS
- D. API
- E. ICMP
正解:A、B、D
質問 # 39
Refer to the exhibit and analyze the output. Which statement about the output is true?
- A. This is a sample of an SNMP temperature control event log.
- B. This is a sample of a PAM event type.
- C. This is a sample of a FortiAnalyzer system interface event log.
- D. This is a sample of FortiGate interface statistics.
正解:B
質問 # 40
An administrator wants to use FortiSoC and SOAR features on a FortiAnalyzer device to detect and block any unauthorized access to FortiGate devices in an OT network.
Which two statements about FortiSoC and SOAR features on FortiAnalyzer are true? (Choose two.)
- A. You must set correct operator in event handler to trigger an event.
- B. You can automate SOC tasks through playbooks.
- C. Each playbook can include multiple triggers.
- D. You cannot use Windows and Linux hosts security events with FortiSoC.
正解:A、B
解説:
Ref: https://docs.fortinet.com/document/fortianalyzer/7.0.0/administration-guide/268882/fortisoc
質問 # 41
An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site.
Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources.
As the OT network administrator, what is the best scenario to provide external access to the third-party company while continuing to secure the ICS networks?
- A. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.
- B. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.
- C. Implement an additional firewall using an additional upstream link to the internet.
- D. Configure outbound security policies with limited active authentication users of the third-party company.
正解:A
質問 # 42
How can you achieve remote access and internet availability in an OT network?
- A. Create a back-end backup network as a redundancy measure.
- B. Create more access policies to prevent unauthorized access.
- C. Add additional internal firewalls to access OT devices.
- D. Implement SD-WAN to manage traffic on each ISP link.
正解:D
質問 # 43
The OT network analyst runs different level of reports to quickly explore threats that exploit the network. Such reports can be run on all routers, switches, and firewalls. Which FortiSIEM reporting method helps to identify these type of exploits of image firmware files?
- A. CMDB reports
- B. Compliance reports
- C. Threat hunting reports
- D. OT/loT reports
正解:C
質問 # 44
Which statemenl about the IEC 104 protocol is true?
- A. IEC 104 is IEC 101 compliant in old SCADA systems.
- B. IEC 104 is used for telecontrol SCADA in electrical engineering applications.
- C. IEC 104 protects data transmission between OT devices and services.
- D. IEC 104 uses non-TCP/IP standards.
正解:B
質問 # 45
......
Fortinet NSE7_OTS-7.2の認定試験は、ネットワークセキュリティ、セキュリティポリシー、エンドポイントセキュリティ、インシデント対応など、OTセキュリティに関連する多岐にわたるトピックをカバーしています。試験は、脅威情報、リスク管理、コンプライアンスなどのトピックもカバーしています。試験に合格した候補者は、OTネットワークを安全に保護し、さまざまな環境でFortinetセキュリティソリューションを管理および維持する能力を証明します。Fortinet NSE7_OTS-7.2認定試験は、IT業界で高く評価され、OTセキュリティにおける優れた標準として世界中の雇用主に認められています。
最新NSE7_OTS-7.2合格保証 試験問題集でには正確で最新な 問題:https://jp.fast2test.com/NSE7_OTS-7.2-premium-file.html
合格させるNSE7_OTS-7.2試験には最新なNSE7_OTS-7.2試験問題集PDF2025:https://drive.google.com/open?id=1lwwZIIoKGE9YaYNqKGQwKNT5Btyb6oUN