1. Home
  2. Fortinet
  3. NSE7_OTS-6.4

Fortinet NSE 7 - OT Security 6.4

Exam Details

  • Exam Code
    :NSE7_OTS-6.4
  • Exam Name
    :Fortinet NSE 7 - OT Security 6.4
  • Certification
    :Fortinet Certifications
  • Vendor
    :Fortinet
  • Total Questions
    :35 Q&As
  • Last Updated
    :Jun 13, 2025

Fortinet Fortinet Certifications NSE7_OTS-6.4 Questions & Answers

  • Question 21:

    An OT administrator is defining an incident notification policy using FortiSIEM and would like to configure the system with a notification policy. If an incident occurs, the administrator would like to be able to intervene and block an IP address or disable a user in Active Directory from FortiSIEM.

    Which step must the administrator take to achieve this task?

    A. Configure a fabric connector with a notification policy on FortiSIEM to connect with FortiGate.

    B. Create a notification policy and define a script/remediation on FortiSIEM.

    C. Define a script/remediation on FortiManager and enable a notification rule on FortiSIEM.

    D. Deploy a mitigation script on Active Directory and create a notification policy on FortiSIEM.

  • Question 22:

    When you create a user or host profile, which three criteria can you use? (Choose three.)

    A. Host or user group memberships

    B. Administrative group membership

    C. An existing access control policy

    D. Location

    E. Host or user attributes

  • Question 23:

    Refer to the exhibit, which shows a non-protected OT environment.

    An administrator needs to implement proper protection on the OT network.

    Which three steps should an administrator take to protect the OT network? (Choose three.)

    A. Deploy an edge FortiGate between the internet and an OT network as a one-arm sniffer.

    B. Deploy a FortiGate device within each ICS network.

    C. Configure firewall policies with web filter to protect the different ICS networks.

    D. Configure firewall policies with industrial protocol sensors

    E. Use segmentation

  • Question 24:

    Refer to the exhibit.

    You need to configure VPN user access for supervisors at the breach and HQ sites using the same soft FortiToken. Each site has a FortiGate VPN gateway.

    What must you do to achieve this objective?

    A. You must use a FortiAuthenticator.

    B. You must register the same FortiToken on more than one FortiGate.

    C. You must use the user self-registration server.

    D. You must use a third-party RADIUS OTP server.

  • Question 25:

    An OT network administrator is trying to implement active authentication.

    Which two methods should the administrator use to achieve this? (Choose two.)

    A. Two-factor authentication on FortiAuthenticator

    B. Role-based authentication on FortiNAC

    C. FSSO authentication on FortiGate

    D. Local authentication on FortiGate

  • Question 26:

    Refer to the exhibit.

    An OT administrator ran a report to identify device inventory in an OT network. Based on the report results, which report was run?

    A. A FortiSIEM CMDB report

    B. A FortiAnalyzer device report

    C. A FortiSIEM incident report

    D. A FortiSIEM analytics report

  • Question 27:

    An OT administrator deployed many devices to secure the OT network. However, the SOC team is reporting that there are too many alerts, and that many of the alerts are false positive. The OT administrator would like to find a solution that eliminates repetitive tasks, improves efficiency, saves time, and saves resources.

    Which products should the administrator deploy to address these issues and automate most of the manual tasks done by the SOC team?

    A. FortiSIEM and FortiManager

    B. FortiSandbox and FortiSIEM

    C. FortiSOAR and FortiSIEM

    D. A syslog server and FortiSIEM

  • Question 28:

    Refer to the exhibit.

    You are navigating through FortiSIEM in an OT network.

    How do you view information presented in the exhibit and what does the FortiGate device security status tell you?

    A. In the PCI logging dashboard and there are one or more high-severity security incidents for the FortiGate device.

    B. In the summary dashboard and there are one or more high-severity security incidents for the FortiGate device.

    C. In the widget dashboard and there are one or more high-severity incidents for the FortiGate device.

    D. In the business service dashboard and there are one or more high-severity security incidents for the FortiGate device.

  • Question 29:

    In a wireless network integration, how does FortiNAC obtain connecting MAC address information?

    A. RADIUS

    B. Link traps

    C. End station traffic monitoring

    D. MAC notification traps

  • Question 30:

    Which three common breach points can be found in a typical OT environment? (Choose three.)

    A. Global hat

    B. Hard hat

    C. VLAN exploits

    D. Black hat

    E. RTU exploits

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Fortinet exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your NSE7_OTS-6.4 exam preparations and Fortinet certification application, do not hesitate to visit our Vcedump.com to find your solutions here.