Logo ExamsQA
Exit
Official Bank 0/30

Fortinet NSE 5 - FortiEDR 5.0 (NSE5_EDR) - Fortinet Actual Exam Questions

Last updated on April 25, 2026

97% Exam Compliance
30 Total Questions
1
Question

Exhibit. Based on the forensics data shown in the exhibit which two statements are true? (Choose two.)

Question image
Select 2
Options
A

The device cannot be remediated
B

The event was blocked because the certificate is unsigned
C

Device C8092231196 has been isolated
D

The execution prevention policy has blocked this event.
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

2
Question

Refer to the exhibit. Based on the threat hunting query shown in the exhibit which of the following is true?

Question image
Options
A

RDP connections will be blocked and classified as suspicious
B

A security event will be triggered when the device attempts a RDP connection
C

This query is included in other organizations
D

The query will only check for network category
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

3
Question

An administrator needs to restrict access to the ADMINISTRATION tab in the central manager for a specific account. What role should the administrator assign to this account?

Options
A

Admin
B

User
C

Local Admin
D

REST API
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

4
Question

What is true about classifications assigned by Fortinet Cloud Sen/ice (FCS)?

Options
A

The core is responsible for all classifications if FCS playbooks are disabled
B

The core only assigns a classification if FCS is not available
C

FCS revises the classification of the core based on its database
D

FCS is responsible for all classifications
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

5
Question

What is the benefit of using file hash along with the file name in a threat hunting repository search?

Options
A

It helps to make sure the hash is really a malware
B

It helps to check the malware even if the malware variant uses a different file name
C

It helps to find if some instances of the hash are actually associated with a different file
D

It helps locate a file as threat hunting only allows hash search
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

Finish Practice?

Are you sure you want to finish? This will end your practice session.