New Year Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Fortinet NSE6_FSR-7.3 Fortinet NSE 6 - FortiSOAR 7.3 Administrator Exam Practice Test

Page: 1 / 4
Total 39 questions

Fortinet NSE 6 - FortiSOAR 7.3 Administrator Questions and Answers

Question 1

On FortiSOAR. which default role is used to assign privileges to other teams and is recommended to not be removed?

Options:

A.

Application Administrator

B.

Full App Permissions

C.

Playbook Administrator

D.

Security Administrator

Question 2

An administrator is issuing the following command on a node trying to join a FortiSOAR duster as a standby: csadm hajoin-cluster --status active —role secondary --primary-node 10.0.1.160

The node fails to join the cluster. What is the issue?

Options:

A.

The rolevalue should be worker.

B.

The primary node needs to be resolvable via FQDN.

C.

The IP address should be for secondary-node Instead of primary-node.

D.

The status value should be passive.

Question 3

Several users have informed you that the FortiSOAR GUI Is not reachable. When troubleshooting, which step should you take first?

Options:

A.

Enter the csadm license --show-details command to check if there is a duplicate license.

B.

Enter the csadm services --restart ngiax command to restart only the Nginx process.

C.

Enter the systemct1 status nginx command to gather more information.

D.

Review the connecters.log file to see what is happening to the HTTPS connections.

Question 4

Which two statements about upgrading a FortiSOAR HA cluster are true7 (Choose two.)

Options:

A.

Nodes can be upgraded while the primary node or secondary node are in the HA cluster.

B.

Upgrading a FortiSOAR HA cluster requires no downtime.

C.

The upgrade procedure for an active-active cluster and an active-passive cluster are the same.

D.

It is recommended that the passive secondary node be upgraded first, and then the active primary node.

Question 5

Refer to the exhibit.

Question # 5

When importing modules to FortiSOAR using the configuration wizard, what actions are applied to fields it you select Merge with Existing as the Bulk action?

Options:

A.

Existing fields are kept, new fields are added, and non-imported fields are deleted.

B.

Existing Holds are overwritten, now fields are added, and non-imported fields are deleted.

C.

Existing fields are kept, new fields are added, and non-imported fields are kept.

D.

Existing fields are overwritten, new fields are added, and non-Imported fields are kept.

Question 6

Which three activities can be achieved using the FortiSOAR queue and shift management feature? (Choose three)

Options:

A.

Initiate shift handovers

B.

Designate a coordinator to monitor queues and shifts

C.

Generate shift leads and shift members

D.

Set up queue meetingrooms

E.

Create queue rules based on matching conditions

Question 7

Which playbook collection includes system-level playbooks that FortiSOAR uses to auto-populate date fields when the status of incident or alert records changes to Resolved or Closed?

Options:

A.

SLA Management Playbooks

B.

Utilities Playbooks

C.

Schedule Management Playbooks

D.

Approval/Manual Task Playbooks

Question 8

Refer to the exhibit.

Question # 8

How long after the syops-ha service goes down will the heartbeat missed notification be sent to the administrator?

Options:

A.

15 minutes

B.

60 minutes

C.

5 minutes

D.

3 minutes

Question 9

Which service on FortiSOAR is the playbook scheduler?

Options:

A.

cyops-torccat

B.

colcrybeatd

C.

celeryd

D.

uwsgi

Question 10

Which product is essential to level 3 of the SOC automation model?

Options:

A.

FortiAnalyzer

B.

FortiAuthenticator

C.

FortiManager

D.

FortiSOAR

Question 11

Refer to the exhibit.

Question # 11

The former primary node was relegated to the secondary rote but is stuck in the Faulted state.

Which two steps must you take to restore operation in the high availability (HA) cluster? (Choose two.)

Options:

A.

Perform a fire drill to test the database integrity of the node that is in the Faulted state.

B.

On the node that is in the Faulted state, enter the csadm ha leave-cluster command.

C.

Enter the csadm ha join-cluster command to have the node that is in the Faulted state rejoin the HA cluster as a secondary node.

D.

Restart the node that is in the Faulted state to trigger another election.

Page: 1 / 4
Total 39 questions