Exhibit.

What is the purpose of using the Chart Builder feature On FortiAnalyzer?

Correct Answer:A

Exhibit.


Assume these are all the events that exist on the FortiAnalyzer device.
How many events will be added to the incident created after running this playbook?

Correct Answer:D
In the exhibit, we see a playbook in FortiAnalyzer designed to retrieve events based on specific criteria, create an incident, and attach relevant data to that incident. The "Get Event" task configuration specifies filters to match any of the following conditions:
✑ Severity = High
✑ Event Type = Web Filter
✑ Tag = Malware
Analysis of Events:
In the FortiAnalyzer Event Monitor list:
✑ We need to identify events that meet any one of the specified conditions (since the filter is set to "Match Any Condition").
Events Matching Criteria:
✑ Severity = High:
✑ Event Type = Web Filter:
✑ Tag = Malware:
After filtering based on these criteria, there are four distinct events:
✑ Two from the "Severity = High" filter.
✑ One from the "Event Type = Web Filter" filter.
✑ One from the "Tag = Malware" filter.
Conclusion:
✑ Correct Answer: D. Four events will be added.
✑ This answer matches the conditions set in the playbook filter configuration and the events listed in the Event Monitor.
References:
✑ FortiAnalyzer 7.4.1 documentation on event filtering, playbook configuration, and incident management criteria.

Which two statement regarding the outbreak detection service are true? (Choose two.)

Correct Answer:BC