Name: Fortinet NSE 5 - FortiEDR 5.0
Brand: ValidExamDumps
SKU: NSE5_EDR-5.0
Price: 20 USD
Availability: InStock
Rating: 4.9 (200 reviews)

Free Fortinet NSE5_EDR-5.0 Exam Actual Questions

The questions for NSE5_EDR-5.0 were last updated On Nov 16, 2024

Question No. 1

Refer to the exhibit.

Based on the FortiEDR status output shown in the exhibit, which two statements about the FortiEDR collector are true? (Choose two.)

AThe collector device has windows firewall enabled

BThe collector has been installed with an incorrect port number

CThe collector has been installed with an incorrect registration password

DThe collector device cannot reach the central manager

Show Answer

Correct Answer: B, D

Question No. 2

Refer to the exhibits.

The exhibits show application policy logs and application details Collector C8092231196 is a member of the Finance group

What must an administrator do to block the FileZilia application?

ADeny application in Finance policy

BAssign Finance policy to DBA group

CAssign Finance policy to Default Collector Group

DAssign Simulation Communication Control Policy to DBA group

Show Answer

Correct Answer: D

Question No. 3

Exhibit.

Based on the event shown in the exhibit which two statements about the event are true? (Choose two.)

AThe device is moved to isolation.

BPlaybooks is configured for this event.

CThe event has been blocked

DThe policy is in simulation mode

Show Answer

Correct Answer: B, D

Question No. 4

A company requires a global communication policy for a FortiEDR multi-tenant environment.

How can the administrator achieve this?

AAn administrator creates a new communication control policy and shares it with other organizations

BA local administrator creates new a communication control policy and shares it with other organizations

CA local administrator creates a new communication control policy and assigns it globally to all organizations

DAn administrator creates a new communication control policy for each organization

Show Answer

Correct Answer: C

Question No. 5

Which two statements are true about the remediation function in the threat hunting module? (Choose two.)

AThe file is removed from the affected collectors

BThe threat hunting module sends the user a notification to delete the file

CThe file is quarantined

DThe threat hunting module deletes files from collectors that are currently online.

Show Answer

Correct Answer: B, C