Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam FCP_FCT_AD-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's FCP_FCT_AD-7.2 exam
Question #: 1
Topic #: 1
[All FCP_FCT_AD-7.2 Questions]

Refer to the exhibit.

Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the Security Fabric automation settings shown in the exhibit:

The automation stitch is configured with a trigger for a 'Compromised Host.'

The action specified for this trigger is 'Quarantine FortiClient via EMS.'

This indicates that when an endpoint is detected as compromised, FortiClient EMS will quarantine the endpoint as part of the automation process.

Therefore, the action taken on compromised endpoints will be to quarantine them through EMS.

Reference

FortiGate Security 7.2 Study Guide, Automation Stitches and Actions Section

Fortinet Documentation on Configuring Automation Stitches and Quarantine Actions


Contribute your Thoughts:

Whitney
6 months ago
You know what they say, the best defense is a good offense... or is it the other way around? Eh, who cares, let's just blame IT.
upvoted 0 times
...
Essie
6 months ago
Quarantining through FortiSwitch? Sounds like they're just shuffling the problem around like a game of musical chairs.
upvoted 0 times
Velda
5 months ago
User 2
upvoted 0 times
...
Graciela
5 months ago
User 1
upvoted 0 times
...
...
Markus
6 months ago
Email notification? Great, now the hackers can read our fan mail.
upvoted 0 times
Hollis
5 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Dyan
5 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Maybelle
5 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mozell
5 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Lynette
6 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Cassandra
6 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
...
Xochitl
6 months ago
I believe endpoints will be banned on FortiGate because it's a more effective measure.
upvoted 0 times
...
Rosamond
6 months ago
I think the endpoints will be quarantined through EMS.
upvoted 0 times
...
Dalene
6 months ago
Banning on FortiGate? Might as well just unplug the whole network and call it a day.
upvoted 0 times
...
Sylvia
6 months ago
Hah! Quarantining through EMS? That's like trying to contain a wildfire with a squirt gun.
upvoted 0 times
Teresita
6 months ago
D) Endpoints will be quarantined through FortiSwitch
upvoted 0 times
...
Aleisha
6 months ago
Maybe quarantining through FortiSwitch would be more effective.
upvoted 0 times
...
Willard
6 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Aleisha
6 months ago
I agree, quarantining through EMS seems ineffective.
upvoted 0 times
...
Tegan
6 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Lynda
6 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mabel
6 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Frederick
6 months ago
User 2
upvoted 0 times
...
Mireya
6 months ago
User 1
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77