New updated Lead4Pass NSE5_FSM-5.2 Dumps with PDF file and VCE practice exam engine to help pass the Fortinet NSE 5 – FortiSIEM 5.2 Exam successfully!

Lead4Pass NSE5_FSM-5.2 exam dumps contain 42 exam questions and answers, covering complete Fortinet NSE 5 – FortiSIEM 5.2 certification exam questions, and verified to be true and valid, check here to get the latest Lead4Pass NSE5_FSM-5.2 dumps: (PDF+VCE).

Check out the NSE5_FSM-5.2 PDF exam questions and answers shared for free:

Also, read the latest 15 Lead4Pass NSE5_FSM-5.2 exam questions and answers online:

Question 1:

What operating system is FortiSIEM based on?

A. Cent OS

B. Microsoft Windows

C. RedHat

D. Ubuntu


Correct Answer: A

Question 2:


A FortiSIEM supervisor at headquarters is struggling to keep up with an increase of EPS (Events Per Second) being reported across the enterprise. What components should an administrator consider deploying to assist the supervisor with processing data?

A. Supervisor

B. Worker

C. Collector

D. Agent


Correct Answer: B

Question 3:


What protocol can be used to collect Windows event logs in an agentless method?






Correct Answer: C

Question 4:


What is a prerequisite for FortiSIEM Linux agent installation?

A. The web server must be installed on the Linux server being monitored

B. The auditd service must be installed on the Linux server being monitored

C. The Linux agent manager server must be installed.

D. Both the web server and the audit service must be installed on the Linux server being monitored


Correct Answer: D

Question 5:


Which FortiSIEM components are capable of performing device discovery?

A. FortiSIEM Windows agent

B. Worker

C. FortiSIEM Linux agent

D. Collector


Correct Answer: D

Question 6:


A FortiSIEM administrator wants to restrict a network administrator to running searches for only firewall devices. Under role management, which option does the FortiSIEM administrator need to configure to achieve this scenario?

A. CMDB Report Conditions

B. Data Conditions

C. UI Access


Correct Answer: B

Question 7:


Refer to the exhibit.

new NSE5_FSM-5.2 dumps questions 7

How was the FortiGate device discovered by FortiSIEM?

A. Through GUI log discovery

B. Through syslog discovery

C. Using the pull events method

D. Through auto log discovery


Correct Answer: A

Question 8:


To determine SNMP discovery issues, which is the best command from the backend?

A. snmpwalk

B. phSNMPTest

C. snmptest

D. ssh


Correct Answer: A

Question 9:


Which three ports can be used to send Syslogs to FortiSIEM? (Choose three.)

A. UDP9999

B. UDP 162

C. TCP 514

D. UDP 514

E. TCP 1470


Correct Answer: BDE

Question 10:


An administrator defines SMTP as a critical process on a Linux server. If the SMTP process is stopped, FortiSIEM would generate a critical event with which event type?


B. Postfix-Mail-Slop

C. Generic_SMTP_Process_Exit



Correct Answer: D

Question 11:


In the advanced analytical rules engine in FortiSIEM, multiple subpatterms can be referenced using which three operation?(Choose three.)







Correct Answer: ABE

Question 12:


What are the four possible incident status values?

A. Active, dosed, cleared, open

B. Active, cleared, cleared manually, system cleared

C. Active, closed, manual, resolved

D. Active, auto cleared, manual, false positive


Correct Answer: C

Question 13:


In the rules engine, which condition instructs FortiSIEM to summarize and count the matching evaluated data?

A. Time Window

B. Aggregation

C. Group By

D. Filters


Correct Answer: C

Question 14:


Refer to the exhibit.

new NSE5_FSM-5.2 dumps questions 14

What do the yellow stars listed in the Monitor column indicate?

A. A yellow star indicates that a metric was applied during discovery, and data has been collected successfully

B. A yellow star indicates that a metric was applied during discovery, but data collection has not started

C. A yellow star indicates that a metric was applied during discovery, but FortiSIEM is unable to collect data.

D. A yellow star indicates that a metric was not applied during discovery and, therefore, FortiSEIM was unable to collect data.


Correct Answer: D

Question 15:


What is the best discovery scan option for a network environment where ping is disabled on all network devices?

A. Smart scan

B. Range scan

C. CMDB scan

D. L2 scan


Correct Answer: A


Latest Complete 42 NSE5_FSM-5.2 Certification Exam Questions With Answers Get Lead4Pass NSE5_FSM-5.2 Exam Dumps: (PDF+VCE)

By fortinetdumps

On the Fortinetexamdumps platform, you can participate in the free Fortinet(nse4,nse5,nse6,nse7,nse8) dumps program. Then test practice online. And you can download the PDF file. Any other questions, you can email [email protected]