| Exam Name: | Fortinet NSE 7 - Security Operations 7.6 Architect | ||
| Exam Code: | NSE7_SOC_AR-7.6 Dumps | ||
| Vendor: | Fortinet | Certification: | Fortinet Certified Professional Security Operations |
| Questions: | 91 Q&A's | Shared By: | tiana |
You are trying to create a playbook that uses source data from ingestion to populate the description field of a task. You successfully saved the source data to a variable called ingestion_data . Now, you must parse the results and extract a list of indicators. Which Jinja expression can accomplish this task? Choose one answer.
Refer to the exhibits.
The Malicious File Detect playbook is configured to create an incident when an event handler generates a malicious file detection event.
Why did the Malicious File Detect playbook execution fail?
You configured a new module named Users . Next, you want to configure a playbook that creates users from ingested data. When new records are created, you want to ensure that duplicate users do not overwrite existing user records and their fields. However, you also want the playbook to continue running even if duplicates are encountered so that any non-duplicate records are still created. Which two actions fulfill the requirements? Choose two answers.
When you use a manual trigger to save user input as a variable, what is the correct Jinja expression to reference the variable? (Choose one answer)