NSE 7 – OT Security 7.2 — Question 8

With the limit of using one firewall device, the administrator enables multi-VDOM on FortiGate to provide independent multiple security domains to each ICS network.
Which statement ensures security protection is in place for all ICS networks?

Answer options

• A. Each traffic VDOM must have a direct connection to FortiGuard services to receive the required security updates.
• B. The management VDOM must have access to all global security services.
• C. Each VDOM must have an independent security license.
• D. Traffic between VDOMs must pass through the physical interfaces of FortiGate to check for security incidents.

Correct answer: B

Explanation

The correct answer is B because the management VDOM's access to global security services ensures that all security policies and updates are uniformly applied across all VDOMs. Options A, C, and D do not guarantee comprehensive security for all ICS networks as they focus on specific aspects rather than the overarching management and control provided by the management VDOM.