Free Access Fortinet.NSE5_FSM-5.2.v2022-03-24.q21 Practice Test (Page 2)

Question 1

Refer to the exhibit.

If events are grouped by Event Receive Time, Reporting IP, and User attributes in FortiSIEM, how many results will be displayed?

A.Unique attributes cannot be grouped

B.Four results will be displayed

C.Two results will be displayed

D.Eight results will be displayed

Question 2

Refer to the exhibit.

A FortiSIEM is continuously receiving syslog events from a FortiGate firewall The FortiSlfcM administrator is trying to search the raw event logs for the last two hours that contain the keyword tcp . However, the administrator is getting no results from the search.
Based on the selected filters shown in the exhibit, why are there no search results?

A.In the Time section, the administrator selected the Relative Last option, and in the drop-down lists, selected 2 and Hours as the lime period The time period should be 24 hours.

B.The administrator selected - in the Operator column That a the wrong operator.

C.The keyword is case sensitive Instead of typing TCP in the Value field. the administrator should type tcp.

D.The administrator selected AND in the Next drop-down list. This is the wrong boolean operator.

Question 3

Which protocol is almost always required for the FortiSIEM GUI discovery process?

A.SNMP

B.Telnet

C.WMI

D.Syslog

Question 4

Refer to the exhibit.

A.The administrator selected AND in the Next drop-down list. This is the wrong boolean operator.

B.The keyword is case sensitive Instead of typing TCP in the Value field. the administrator should type tcp.

C.In the Time section, the administrator selected the Relative Last option, and in the drop-down lists, selected 2 and Hours as the lime period The time period should be 24 hours.

D.The administrator selected - in the Operator column That a the wrong operator.

Question 5

Refer to the exhibit.

A FortiSIEM administrator wants to collect both SIEM event logs and performance and availability metrics (PAM) events from a Microsoft Windows server Which protocol should the administrator select in the Access Protocol drop-down list so that FortiSIEM will collect both SIEM and PAM events?

A.LDAPS

B.WMI

C.LDAP start TLS

D.TELNET

Other Version: 1329Fortinet.NSE5_FSM-5.2.v2022-06-21.q21; 117Fortinet.Examcollectionpass.NSE5_FSM-5.2.v2021-09-24.by.arvin.15q.pdf

Latest Upload: 252PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 362Nokia.4A0-113.v2026-05-01.q69; 397EC-COUNCIL.312-49v11.v2026-04-30.q214; 307Microsoft.MB-820.v2026-04-30.q101; 248Salesforce.MC-202.v2026-04-30.q57; 275BICSI.INSTC_V8.v2026-04-29.q53; 411NMLS.MLO.v2026-04-28.q82; 275NCARB.Project-Management.v2026-04-28.q27; 494EMC.D-AV-DY-23.v2026-04-27.q184; 1303ServiceNow.CSA.v2026-04-27.q483

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File