Free Preparation Discussions
MENU
Fortinet Exam NSE8_812 Topic 5 Question 30 Discussion
Topic #: 5
Refer to the exhibit showing a FortiSOAR playbook.
You are investigating a suspicious e-mail alert on FortiSOAR, and after reviewing the executed playbook, you can see that it requires intervention.
What should be your next step?
The exhibited playbook requires intervention, which means that the playbook has reached a point where it needs a human operator to take action. The next step should be to go to the Incident Response tasks dashboard and run the pending actions. This will allow you to see the pending actions that need to be taken and to take those actions.
The other options are not correct. Option B will only show you the notification icon, but it will not allow you to run the pending input action. Option C will run the Mark Drive by Download playbook action, but this is not the correct action to take in this case. Option D is not a valid option.
Here are some additional details about pending actions in FortiSOAR:
Pending actions are actions that need to be taken by a human operator.
Pending actions are displayed in the Incident Response tasks dashboard.
Pending actions can be run by clicking on the action in the dashboard.
Alethea
3 months agoAmina
3 months agoLuis
2 months agoDewitt
2 months agoGerman
2 months agoSolange
2 months agoLavina
3 months agoElmira
2 months agoParis
2 months agoZona
2 months agoRuth
2 months agoMammie
3 months agoMarci
3 months agoCoral
3 months agoAja
3 months agoLouvenia
3 months agoErnest
3 months agoSheron
4 months agoScot
3 months agoGianna
3 months agoCiara
3 months agoMaddie
4 months ago