Fortinet
NSE8_812 · Question #197
NSE8_812 Question #197: Real Exam Question with Answer & Explanation
Sign in or unlock NSE8_812 to reveal the answer and full explanation for question #197. The question stem and answer options stay visible for context.
Question
A customer is trying to setup a Playbook automation using a FortiAnalyzer, FortiWeb and FortiGate. The intention is to have the FortiGate quarantine any source of SQL Injection detected by the FortiWeb. They got the automation setup to trigger on the FortiGate when simulating an attack to their website, but the quarantine object was created at the IP: 0.0.0.0. Referring to the configuration and logs in the exhibits, which two statements are true? (Choose two.)
Options
- AThe Group By option in the handler should be different to src, so src can be used on the Playbook configuration.
- BFortiSOC Playbooks combining FortiWeb and FortiGate are not supported.
- CTo diagnose this issue, you need to use the command diagnose test application oftpd 22.
- DThe FortiAnalyzer ADOM Type must be Fabric.
- ETo fix the issue the parameter for script on the Playbook configuration should be epip.
Unlock NSE8_812 to see the answer
You've previewed enough free NSE8_812 questions. Unlock NSE8_812 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.