Question 8
Which two statements about running a vulnerability scan are true? (Choose two.)
You should run the vulnerability scan during a maintenance window.
You should run the vulnerability scan in a test environment.
Vulnerability scanning increases the load on FortiWeb, so it should be avoided.
You should run the vulnerability scan on a live website to get accurate results.
Correct answer: AB
Explanation:
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenancewindow.Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm
Should the Vulnerability Scanner allow it, SVMS will set the scan schedule (or schedules) to run in a maintenance window. SVMS will advise Client of the scanner's ability to complete the scan(s) within the maintenance
window.
Vulnerabilities on live web sites. Instead, duplicate the web site and its database in a test environment.
https://help.fortinet.com/fweb/552/Content/FortiWeb/fortiweb-admin/vulnerability_scans.htm