Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Fortinet Exam FCP_FCT_AD-7.2 Topic 1 Question 1 Discussion

Actual exam question for Fortinet's FCP_FCT_AD-7.2 exam
Question #: 1
Topic #: 1
[All FCP_FCT_AD-7.2 Questions]

Refer to the exhibit.

Based on the Security Fabric automation settings, what action will be taken on compromised endpoints?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the Security Fabric automation settings shown in the exhibit:

The automation stitch is configured with a trigger for a 'Compromised Host.'

The action specified for this trigger is 'Quarantine FortiClient via EMS.'

This indicates that when an endpoint is detected as compromised, FortiClient EMS will quarantine the endpoint as part of the automation process.

Therefore, the action taken on compromised endpoints will be to quarantine them through EMS.

Reference

FortiGate Security 7.2 Study Guide, Automation Stitches and Actions Section

Fortinet Documentation on Configuring Automation Stitches and Quarantine Actions


by Johnna at Jun 01, 2024, 12:47 AM

Limited Time Offer

25%

Off

Get Premium FCP_FCT_AD-7.2 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Whitney
12 months ago
You know what they say, the best defense is a good offense... or is it the other way around? Eh, who cares, let's just blame IT.
upvoted 0 times
...
Essie
1 years ago
Quarantining through FortiSwitch? Sounds like they're just shuffling the problem around like a game of musical chairs.
upvoted 0 times
Velda
12 months ago
User 2
upvoted 0 times
...
Graciela
12 months ago
User 1
upvoted 0 times
...
...
Markus
1 years ago
Email notification? Great, now the hackers can read our fan mail.
upvoted 0 times
Hollis
11 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Dyan
12 months ago
C) An email notification will be sent for compromised endpoints
upvoted 0 times
...
Maybelle
12 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mozell
12 months ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Lynette
12 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Cassandra
12 months ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
...
Xochitl
1 years ago
I believe endpoints will be banned on FortiGate because it's a more effective measure.
upvoted 0 times
...
Rosamond
1 years ago
I think the endpoints will be quarantined through EMS.
upvoted 0 times
...
Dalene
1 years ago
Banning on FortiGate? Might as well just unplug the whole network and call it a day.
upvoted 0 times
...
Sylvia
1 years ago
Hah! Quarantining through EMS? That's like trying to contain a wildfire with a squirt gun.
upvoted 0 times
Teresita
12 months ago
D) Endpoints will be quarantined through FortiSwitch
upvoted 0 times
...
Aleisha
1 years ago
Maybe quarantining through FortiSwitch would be more effective.
upvoted 0 times
...
Willard
1 years ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Aleisha
1 years ago
I agree, quarantining through EMS seems ineffective.
upvoted 0 times
...
Tegan
1 years ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Lynda
1 years ago
B) Endpoints will be banned on FortiGate
upvoted 0 times
...
Mabel
1 years ago
A) Endpoints will be quarantined through EMS
upvoted 0 times
...
Frederick
1 years ago
User 2
upvoted 0 times
...
Mireya
1 years ago
User 1
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77