1. Home
  2. Discussions
  3. Fortinet
  4. NSE 5 Network Security Analyst
  5. NSE5_FAZ-7.2 Discussions
  6. NSE5_FAZ-7.2 Exam Topic 3 Question 22 Discussion

Fortinet NSE 5 - FortiAnalyzer 7.2 NSE5_FAZ-7.2 Question # 22 Topic 3 Discussion

 Fortinet Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Fortinet NSE 5 - FortiAnalyzer 7.2 NSE5_FAZ-7.2 Question # 22 Topic 3 Discussion

NSE5_FAZ-7.2 Exam Topic 3 Question 22 Discussion:
Question #: 22
Topic #: 3

What happens when the IOC breach detection engine on FortiAnalyzer finds web logs that match a blocklisted IP address?
A.

The endpoint is marked as Compromised and. optionally, can be put in quarantine.

B.

FortiAnalyzer flags the associated host for further analysis.

C.

A new Infected entry is added for the corresponding endpoint.

D.

The detection engine classifies those logs as Suspicious

Get Premium NSE5_FAZ-7.2 Questions
Actual exam question for Fortinet NSE5_FAZ-7.2 exam by Rogue72251 at Aug 4, 2025, 2:44:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next