View all questions & answers for the NSE 5 - FortiAnalyzer 7.4 Analyst Exam Materials exam


Question 10 Discussion

Which two actions should an administrator take to view Compromised Hosts on FortiAnalyzer? (Choose two answers)

  • A. Subscribe FortiAnalyzer to FortiGuard to keep its local threat database up to date
  • B. Enable device detection on the FortiGate devices that are sending logs to FortiAnalyzer.
  • C. Make sure all endpoints are reachable by FortiAnalyzer.
  • D. Enable web filtering in firewall policies on FortiGate devices, and make sure these logs are sent to FortiAnalyzer.
Correct Answer: A,D

Brave-Dump Clients Votes

AD 100%

Comments



Ibrahim Eldesoki 2025-04-08 19:28:50

Selected Answers: A, D


FortiAnalyzer downloads threat intelligence FortiGuard package (TDS) every day, it runs real-time threat detection when it receives logs from the FortiGate web filter