NSE 5 – FortiEDR 5.0 — Question 3

Which security policy has all of its rules disabled by default?

Answer options

• A. Exfiltration Prevention
• B. Execution Prevention
• C. Device Control
• D. Ransomware Prevention

Correct answer: C

Explanation

The correct answer is C, Device Control, as it is designed to require manual configuration and has all of its rules disabled by default to prevent unintended disruptions. The other options typically have some rules enabled to provide immediate protection against specific threats.