NSE 5 – FortiSIEM 6.3 — Question 8

How is a subpattern for a rule defined?

Answer options

• A. Filters, Aggregation, Group By definitions
• B. Filters, Group By definitions, Threshold
• C. Filters, Threshold, Time Window definitions
• D. Filters, Aggregation, Time Window definitions

Correct answer: A

Explanation

The correct answer, A, includes Filters, Aggregation, and Group By definitions, which are essential components in defining a subpattern for a rule. Options B, C, and D introduce either Threshold or Time Window definitions, which do not accurately represent the elements that make up a subpattern.