Fortinet
NSE7_SOC_AR-7.6 · Question #7
NSE7_SOC_AR-7.6 Question #7: Real Exam Question with Answer & Explanation
Sign in or unlock NSE7_SOC_AR-7.6 to reveal the answer and full explanation for question #7. The question stem and answer options stay visible for context.
Question
Refer to the exhibits. You configured a spearphishing event handler and the associated rule. However. FortiAnalyzer did not generate an event. When you check the FortiAnalyzer log viewer, you confirm that FortiSandbox forwarded the appropriate logs, as shown in the raw log exhibit. What configuration must you change on FortiAnalyzer in order for FortiAnalyzer to generate an event?
Exhibit
Options
- AIn the Log Type field, change the selection to AntiVirus Log(malware).
- BConfigure a FortiSandbox data selector and add it tothe event handler.
- CIn the Log Filter by Text field, type the value: .5 ub t ype ma Iwa re..
- DChange trigger condition by selecting. Within a group, the log field Malware Kame (mname>
Unlock NSE7_SOC_AR-7.6 to see the answer
You've previewed enough free NSE7_SOC_AR-7.6 questions. Unlock NSE7_SOC_AR-7.6 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.