View all questions & answers for the NSE 7 - Security Operations 7.6 Architect Materials exam


NSE 7 - Security Operations 7.6 Architect Materials-Question 23 Discussion

You are using FortiSIEM analytics to reference the configuration management database (CMDB) event type categories with the following requirements: 1- Attribute: Event Type 2- Value: Group: Logon Success Which operator must you use for the analytics search? (Choose one answer)

  • A. CONTAIN
  • B. IN
  • C. HAS
  • D. IS
Correct Answer: B

Brave-Dump Clients Votes

B 66.67%
D 33.33%

Comments



Anonymous User 2026-02-09 18:40:27

Selected Answers: D


IN searches a list or set of values, this is matching a single event type so it's D
  • George Were 2026-02-17 20:34:13
    IS only has one value, NULL

Anonymous User 2026-03-07 18:07:03

Selected Answers: B


In

Anonymous User 2026-04-13 21:51:27

Selected Answers: B


IN is used when matching with a member out of a group.