NSE 5 – Network Security Analyst — Question 10

Which statement is correct? FortiAnalyzer collects and aggregates log data from:

Answer options

• A. Any supported device it is configured to monitor.
• B. FortiGate devices only.
• C. FortiAnalyzer’s operating in collector mode only.
• D. Any supported device it is configured to monitor, as long as it’s not in the wide area network (WAN).

Correct answer: D

Explanation

The correct answer is D because FortiAnalyzer is designed to collect logs from any supported device it is set up to monitor, but it specifies a limitation regarding devices on the WAN. Option A is incorrect as it does not mention the WAN limitation. Option B is wrong because it restricts the devices to only FortiGate, and option C is incorrect since it implies that only devices in collector mode can be monitored.