Free NSE7_OTS-6.4 Sample Questions — Fortinet NSE 7 - OT Security 6.4

Free NSE7_OTS-6.4 sample questions for the Fortinet NSE 7 - OT Security 6.4 exam. No account required: study at your own pace.

Want an interactive quiz? Take the full NSE7_OTS-6.4 practice test

Looking for more? Click here to get the full PDF with 24+ practice questions for $4 for offline study and deeper preparation.

Question 1

An OT supervisor needs to protect their network by implementing security with an industrial signature database on the FortiGate device. Which statement about the industrial signature database on FortiGate is true?

  • A. supervisor must purchase an industrial signature database and import it to the FortiGate
  • B. An administrator must create their own database using custom signatures
  • C. By default, the industrial database is enabled
  • D. supervisor can enable it through the FortiGate CLI
Show Answer
Correct Answer:
D. supervisor can enable it through the FortiGate CLI
Question 2

An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM. Which step must the administrator take to achieve this task?

  • A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate
  • B. Create a notification policy and define a script/remediation on FortiSIEM
  • C. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM
  • D. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM
Show Answer
Correct Answer:
B. Create a notification policy and define a script/remediation on FortiSIEM
Question 3

An OT administrator has configured FSSO and local firewall authentication. A user who is part of a user group is not prompted from credentials during authentication. What is a possible reason?

  • A. FortiGate determined the user by passive authentication
  • B. The user was determined by Security Fabric
  • C. Two-factor authentication is not configured with RADIUS authentication method
  • D. FortiNAC determined the user by DHCP fingerprint method
Show Answer
Correct Answer:
A. FortiGate determined the user by passive authentication
Question 4

What are two benefits of a Nozomi integration with FortiNAC? (Choose two.)

  • A. Enhanced point of connection details
  • B. Direct VLAN assignment
  • C. Adapter consolidation for multi-adapter hosts
  • D. Importation and classification of hosts
Show Answer
Correct Answer:
  • C. Adapter consolidation for multi-adapter hosts
  • D. Importation and classification of hosts
Question 5

An OT architect has deployed a Layer 2 switch in the OT network at Level 1 the Purdue model-process control. The purpose of the Layer 2 switch is to segment traffic between PLC1 and PLC2 with two VLANs. All the traffic between PLC1 and PLC2 must first flow through the Layer 2 switch and then through the FortiGate device in the Level 2 supervisory control network. What statement about the traffic between PLC1 and PLC2 is true?

  • A. The Layer 2 switch rewrites VLAN tags before sending traffic to the FortiGate device
  • B. The Layer 2 switches routes any traffic to the FortiGate device through an Ethernet link
  • C. PLC1 and PLC2 traffic must flow through the Layer-2 switch trunk link to the FortiGate device
  • D. In order to communicate, PLC1 must be in the same VLAN as PLC2
Show Answer
Correct Answer:
C. PLC1 and PLC2 traffic must flow through the Layer-2 switch trunk link to the FortiGate device

Aced these? Get the Full Exam

Download the complete NSE7_OTS-6.4 study bundle with 24+ questions in a single printable PDF.

Purchase Full Exam PDF | $4