Fortinet NSE5_FSM-6.3 Fortinet NSE 5 – FortiSIEM 6.3 Online Training
Fortinet NSE5_FSM-6.3 Online Training
The questions for NSE5_FSM-6.3 were last updated at Feb 22,2025.
- Exam Code: NSE5_FSM-6.3
- Exam Name: Fortinet NSE 5 - FortiSIEM 6.3
- Certification Provider: Fortinet
- Latest update: Feb 22,2025
When configuring collectors located in geographically separated sites, what ports must be open on a front end firewall?
- A . HTTPS, from the collector to the worker upload settings address only
- B . HTTPS, from the collector to the supervisor and worker upload settings addresses
- C . HTTPS, from the Internet to the collector
- D . HTTPS, from the Internet to the collector and from the collector to the FortiSIEM cluster
An administrator is in the process of renewing a FortiSIEM license.
Which two commands will provide the system ID? (Choose two.)
- A . phgetHWID
- B . ./phLicenseTool – support
- C . phgetUUID
- D . ./phLicenseTool-show
Refer to the exhibit.
Which section contains the sortings that determine how many incidents are created?
- A . Actions
- B . Group By
- C . Aggregate
- D . Filters
Refer to the exhibit.
What does the pauso icon indicate?
- A . Data collection is paused after the intervals shown for metrics.
- B . Data collection has not started.
- C . Data collection execution failed because the device is not reachable.
- D . Data collection is paused duo to an issue, such as a change of password.
Refer to the exhibit.
A FortiSIEM administrator wants to group some attributes for a report, but is not able to do so successfully.
As shown in the exhibit, why are some of the fields highlighted in red?
- A . Unique attributes cannot be grouped.
- B . The Event Receive Time attribute is not available for logs.
- C . The attribute COUNT(Matched events) is an invalid expression.
- D . No RAW Event Log attribute is available for devices.
Refer to the exhibit.
Which value will FortiSIEM use to populate the Event Type field?
- A . PHL_INFO
- B . phPerfJob
- C . PH_DSV_MON_SYS_DISK_UTIL
- D . diskUtil
An administrator defines SMTP as a critical process on a Linux server.
It the SMTP process is stopped. FortiSIEM will generate a critical event with which event type?
- A . Postfix-Mail-Stop
- B . PH_DEV_MON_PROC_STOP
- C . PH_DEV_MON_SMTP_STOP
- D . Generic_SMTP_Procoss_Exit
Refer to the exhibit.
An administrator is investigating a FortiSIEM license issue.
The procedure is for which offline licensing condition?
- A . The procedure is for offline license debug.
- B . The procedure is for offline license registration.
- C . The procedure is for offline license validation.
- D . The procedure is for offline license verification.
Which FortiSIEM feature must you use to produce a report on which FortiGate devices in your environment are running which firmware version?
- A . Run an analytic search.
- B . Run a query using the Inventory tab.
- C . Run a baseline report.
- D . Run a CMDB report
Which statement about global thresholds and per device thresholds is true?
- A . FortiSIEM uses global and per device thresholds tor all performance metrics.
- B . FortiSIEM uses global thresholds for all performance metrics.
- C . FortiSIEM uses fixed hardcoded thresholds for all performance metrics.
- D . FortiSIEM uses global thresholds for all security metrics.
Latest NSE5_FSM-6.3 Dumps Valid Version with 42 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
