Refer to the exhibits.
Based on the FortiGate Security Fabric settings shown in the exhibits, what must an administrator do on the EMS server to successfully quarantine an endpoint. when it is detected as a compromised host (loC)?
Based on the FortiGate Security Fabric settings shown in the exhibits, to successfully quarantine an endpoint when it is detected as a compromised host (IOC), the following step is required:
Enable Remote HTTPS Access to EMS: This setting allows FortiGate to communicate securely with FortiClient EMS over HTTPS. Remote HTTPS access is essential for the quarantine functionality to operate correctly, enabling the EMS server to receive and act upon the quarantine commands from FortiGate.
Therefore, the administrator must enable remote HTTPS access to EMS to allow the quarantine process to function properly.
Reference
FortiGate Infrastructure 7.2 Study Guide, Security Fabric and Integration with EMS Sections
Fortinet Documentation on Enabling Remote HTTPS Access to FortiClient EMS
Marta
5 months agoGeraldo
4 months agoBoris
4 months agoShawana
5 months agoToshia
5 months agoElbert
5 months agoSol
5 months agoCarmen
5 months agoMarylin
5 months agoAileen
5 months agoAlishia
6 months agoKenny
5 months agoMabel
5 months agoNickolas
6 months agoMalissa
5 months agoYvette
6 months agoMariann
6 months agoJesusita
6 months agoJacob
6 months ago