Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam FCP_FCT_AD-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's FCP_FCT_AD-7.2 exam
Question #: 1
Topic #: 1
[All FCP_FCT_AD-7.2 Questions]

Refer to the exhibit.

Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the Security Fabric automation settings shown in the exhibit:

The automation stitch is configured with a trigger for a 'Compromised Host.'

The action specified for this trigger is 'Quarantine FortiClient via EMS.'

This indicates that when an endpoint is detected as compromised, FortiClient EMS will quarantine the endpoint as part of the automation process.

Therefore, the action taken on compromised endpoints will be to quarantine them through EMS.

Reference

FortiGate Security 7.2 Study Guide, Automation Stitches and Actions Section

Fortinet Documentation on Configuring Automation Stitches and Quarantine Actions


by Johnna at Jun 01, 2024, 12:47 AM

Limited Time Offer

25%

Off

Get Premium FCP_FCT_AD-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Whitney
10 months ago
You know what they say, the best defense is a good offense... or is it the other way around? Eh, who cares, let's just blame IT.
upvoted 0 times
...
Essie
10 months ago
Quarantining through FortiSwitch? Sounds like they're just shuffling the problem around like a game of musical chairs.
upvoted 0 times
Velda
9 months ago
User 2
upvoted 0 times
...
Graciela
9 months ago
User 1
upvoted 0 times
...
...
Markus
10 months ago
Email notification? Great, now the hackers can read our fan mail.
upvoted 0 times
Hollis
9 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Dyan
9 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Maybelle
9 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mozell
10 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Lynette
10 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Cassandra
10 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
...
Xochitl
10 months ago
I believe endpoints will be banned on FortiGate because it's a more effective measure.
upvoted 0 times
...
Rosamond
10 months ago
I think the endpoints will be quarantined through EMS.
upvoted 0 times
...
Dalene
10 months ago
Banning on FortiGate? Might as well just unplug the whole network and call it a day.
upvoted 0 times
...
Sylvia
11 months ago
Hah! Quarantining through EMS? That's like trying to contain a wildfire with a squirt gun.
upvoted 0 times
Teresita
10 months ago
D) Endpoints will be quarantined through FortiSwitch
upvoted 0 times
...
Aleisha
10 months ago
Maybe quarantining through FortiSwitch would be more effective.
upvoted 0 times
...
Willard
10 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Aleisha
10 months ago
I agree, quarantining through EMS seems ineffective.
upvoted 0 times
...
Tegan
10 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Lynda
10 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mabel
10 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Frederick
10 months ago
User 2
upvoted 0 times
...
Mireya
10 months ago
User 1
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77