NSE7_OTS-7.2 Online Practice Questions

Home / Fortinet / NSE7_OTS-7.2

Latest NSE7_OTS-7.2 Exam Practice Questions

The practice questions for NSE7_OTS-7.2 exam was last updated on 2025-04-26 .

Viewing page 1 out of 4 pages.

Viewing questions 1 out of 22 questions.

Question#1

Which three Fortinet products can you use for device identification in an OT industrial control system (ICS)? (Choose three.)

A. FortiSIEM
B. FortiManager
C. FortiAnalyzer
D. FortiGate
E. FortiNAC

Question#2

Refer to the exhibit.



You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.
What must you do to achieve this objective?

A. You must use a FortiAuthenticator.
B. You must register the same FortiToken on more than one FortiGate.
C. You must use the user self-registration server.
D. You must use a third-party RADIUS OTP server.

Question#3

When you create a user or host profile, which three criteria can you use? (Choose three.)

A. Host or user group memberships
B. Administrative group membership
C. An existing access control policy
D. Location
E. Host or user attributes

Explanation:
https://docs.fortinet.com/document/fortinac/9.2.0/administration-guide/15797/user-host-profiles

Question#4

An OT network consists of multiple FortiGate devices. The edge FortiGate device is deployed as the secure gateway and is only allowing remote operators to access the ICS networks on site. Management hires a third-party company to conduct health and safety on site. The third-party company must have outbound access to external resources.
As the OT network administrator, what is the best scenario to provide external access to the third-party company while continuing to secure the ICS networks?

A. Configure outbound security policies with limited active authentication users of the third-party company.
B. Create VPN tunnels between downstream FortiGate devices and the edge FortiGate to protect ICS network traffic.
C. Split the edge FortiGate device into multiple logical devices to allocate an independent VDOM for the third-party company.
D. Implement an additional firewall using an additional upstream link to the internet.

Question#5

Refer to the exhibit.



The IPS profile is added on all of the security policies on FortiGate.
For an OT network, which statement of the IPS profile is true?

A. FortiGate has no IPS industrial signature database enabled.
B. The listed IPS signatures are classified as SCADAapphcat nns
C. All IPS signatures are overridden and must block traffic match signature patterns.
D. The IPS profile inspects only traffic originating from SCADA equipment.

Exam Code: NSE7_OTS-7.2Q & A: 62 Q&AsUpdated:  2025-04-26

 Get All NSE7_OTS-7.2 Q&As

Top 20 Exams

CertQuestionsBank doesn't offer Real Microsoft, Amazon, Cisco Exam Questions. All CertQuestionsBank content is sourced from the Internet.

Important Links

Know Us

Follow Us

Copyright © 2025 CertQuestionsBank NETWORK CO.,LIMITED. All Rights Reserved.