For which two purposes would you use the command set log checksum? (Choose two.)
For which two purposes would you use the command set log checksum? (Choose two.)
The command set log checksum serves two primary purposes. Firstly, it prevents log modification or tampering by creating a checksum that verifies the integrity of the log files, ensuring that they have not been altered. Secondly, it helps protect against man-in-the-middle attacks during log upload from FortiAnalyzer to an SFTP server by verifying the integrity of the logs during the transmission process.
Answer is A & D To prevent logs from being tampered with while in storage, you can add a log checksum using the config system global command. You can configure FortiAnalyzer to record a log file hash value, timestamp, and authentication code when the log is rolled and archived and when the log is uploaded (if that feature is enabled). This can also help against man-in-the-middle only for the transmission from FortiAnalyzer to an SSH File Transfer Protocol (SFTP) server during log upload. FortiAnalyzer_7.0_Study_Guide-Online page 149
A and D) FortiAnalyzer_7.0_Study_Guide-Online.pdf page 149: To prevent logs from being tampered with while in storage, you can add a log checksum using the config system global command. You can configure FortiAnalyzer to record a log file hash value, timestamp, and authentication code when the log is rolled and archived and when the log is uploaded (if that feature is enabled). This can also help against man-in-the-middle only for the transmission from FortiAnalyzer to an SSH File Transfer Protocol (SFTP) server during log upload.
Correct A and D To prevent logs from being tampered with while in storage, you can add a log checksum using This can also help against man-in-the-middle only for the transmission from FortiAnalyzer to an SSH File Transfer Protocol (SFTP) server during log upload.