Fortinet NSE 6 - FortiSIEM 7.4 Analyst - NSE6_FSM_AN-7.4 Exam Practice Test
Refer to the exhibit. If you group the events by Reporting IP, Event Type, and User attributes, how many results will FortiSIEM display?
Correct Answer: A
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).
Which two types of information can FortiSIEM retrieve from FortiClient EMS through an external connection? (Choose two.)
Correct Answer: A,D
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).
You need a model that predicts a target field based on other fields in a dataset and then triggers an anomaly if the value does not match the prediction. Which machine learning (ML) algorithm will you use to build this type of model?
Correct Answer: C
Refer to the exhibit.
The configuration for a machine learning (ML) dataset using anomaly detection is shown.
If data for this model is generated every hour, how long must the FortiSIEM device be up before it can produce a valid training set?
The configuration for a machine learning (ML) dataset using anomaly detection is shown.
If data for this model is generated every hour, how long must the FortiSIEM device be up before it can produce a valid training set?
Correct Answer: B
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).
Rules on FortiSIEM are usually processed as events are collected (streaming). How can you create a rule to evaluate events over an 8-hour period?
Correct Answer: C
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).
Refer to the exhibit. What is the Group: VPN Gateway value referring to?
Correct Answer: A
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).
Which two data areas can you use for user and entity behavior analytics (UEBA) machine learning models? (Choose two.)
Correct Answer: B,C
Explanation: Only visible for ExamsLabs members. You can sign-up / login (it's free).