Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Fortinet Exam NSE7_PBC-7.2 Topic 1 Question 10 Discussion

Actual exam question for Fortinet's NSE7_PBC-7.2 exam
Question #: 10
Topic #: 1
[All NSE7_PBC-7.2 Questions]

You are deploying Amazon Web Services (AWS) GuardDuty to monitor malicious or unauthorized behaviors related to AWS resources. You will also use the Fortinet aws-lambda-guardduty script to translate feeds from AWS GuardDuty findings into a list of malicious IP addresses. FortiGate can then consume this list as an external threat feed.

Which Amazon AWS services must you subscribe to in order to use this feature?

Show Suggested Answer Hide Answer

Contribute your Thoughts:

Winifred
6 months ago
So, to summarize, we need to subscribe to GuardDuty and Lambda for this setup.
upvoted 0 times
...
Merilyn
6 months ago
That's correct, Lambda is needed for the script integration.
upvoted 0 times
...
Shaniqua
6 months ago
We also need to subscribe to AWS Lambda for the Fortinet script to work.
upvoted 0 times
...
Winifred
6 months ago
Yes, GuardDuty is necessary for this feature.
upvoted 0 times
...
Merilyn
6 months ago
I think we need to subscribe to Amazon GuardDuty.
upvoted 0 times
...
Marjory
6 months ago
I don't think CloudWatch is necessary for this specific feature. GuardDuty and S3 should be enough.
upvoted 0 times
...
Glendora
7 months ago
What about Amazon CloudWatch? Do we need to subscribe to that as well?
upvoted 0 times
...
Ronny
7 months ago
Yes, that's correct. GuardDuty will monitor for threats and S3 will store the data.
upvoted 0 times
...
Evangelina
7 months ago
I think we need to subscribe to Amazon GuardDuty and Amazon S3.
upvoted 0 times
...
Lenna
8 months ago
Absolutely, documentation is key. I'm sure AWS has all the details we need to set this up properly. But you know what they say, 'when in doubt, Google it out!' I bet there are some great blog posts or tutorials that can walk us through the whole process step-by-step.
upvoted 0 times
Tamekia
7 months ago
That sounds like a solid plan. Let's make sure we have all our bases covered before implementing this feature.
upvoted 0 times
...
Audra
7 months ago
And if we run into any issues, we can always search online for additional resources.
upvoted 0 times
...
Katina
8 months ago
Let's check the AWS documentation to ensure we have all the necessary subscriptions in place.
upvoted 0 times
...
Salena
8 months ago
So then FortiGate can consume this list as an external threat feed.
upvoted 0 times
...
Evangelina
8 months ago
The Fortinet aws-lambda-guardduty script helps translate these findings into a list of malicious IP addresses.
upvoted 0 times
...
Tula
8 months ago
We can subscribe to Amazon SNS to receive notifications from GuardDuty findings.
upvoted 0 times
...
Shalon
8 months ago
AWS GuardDuty provides threat detection by monitoring AWS resources for suspicious activity.
upvoted 0 times
...
...
Carma
8 months ago
Haha, good point. You don't want to get caught with your firewall down, am I right? I think the key services are GuardDuty and Lambda, but it's always a good idea to consider any additional dependencies or integrations that might be necessary. Maybe we should check the documentation just to be sure we're not missing anything obvious.
upvoted 0 times
...
Jules
8 months ago
I agree, GuardDuty and Lambda are definitely required. But I'm also wondering if we need to subscribe to any other services, like Amazon S3 to store the malicious IP list or Amazon SNS to receive notifications from GuardDuty? Gotta cover all our bases, you know.
upvoted 0 times
...
Felix
8 months ago
Hmm, this question seems pretty straightforward. I think we need to subscribe to AWS GuardDuty and AWS Lambda for this use case. GuardDuty is the service that detects the malicious activities, and Lambda is the serverless compute service we'll use to run the Fortinet script to process the findings.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77