1. Home
  2. CheckPoint
  3. 156-215.13

CheckPoint 156-215.13 Online Practice Questions and Exam Preparation

156-215.13 Exam Details

  • Exam Code
    :156-215.13
  • Exam Name
    :Check Point Certified Security Administrator - GAiA
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :361 Q&As
  • Last Updated
    :Dec 15, 2021

CheckPoint 156-215.13 Online Questions & Answers

  • Question 301:

    You want to reset SIC between smberlin and sgosaka.

    In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the cpconfig menu. When trying to establish a connection, instead of a working connection, you receive this error message:

    What is the reason for this behavior?

    A. The Gateway was not rebooted, which is necessary to change the SIC key.
    B. The Check Point services on the Gateway were not restarted because you are still in the cpconfig utility.
    C. You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).
    D. The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.

  • Question 302:

    The fw monitor utility is used to troubleshoot which of the following problems?

    A. Address translation
    B. Log Consolidation Engine
    C. User data base corruption
    D. Phase two key negotiation

  • Question 303:

    You are working with multiple Security Gateways that enforce an extensive number of rules. To simplify security administration, which one of the following would you choose to do?

    A. Create network objects that restrict all applicable rules to only certain networks.
    B. Run separate SmartConsole instances to login and configure each Security Gateway directly.
    C. Create a separate Security Policy package for each remote Security Gateway.
    D. Eliminate all possible contradictory rules such as the Stealth or Cleanup rules.

  • Question 304:

    Match the terms with their definitions:

    A. A-3, B-4, C-1, D-2
    B. A-2, B-3, C-4, D-1
    C. A-3, B-2, C-1, D-4
    D. A-3, B-2, C-4, D-1

  • Question 305:

    When using LDAP as an authentication method for Identity Awareness, the query:

    A. Prompts the user to enter credentials.
    B. Requires administrators to specifically allow LDAP traffic to and from the LDAP Server and the Security Gateway.
    C. Requires client and server side software.
    D. Is transparent, requiring no client or server side software.

  • Question 306:

    Which feature in R76 permits blocking specific IP addresses for a specified time period?

    A. Block Port Overflow
    B. Suspicious Activity Monitoring
    C. HTTP Methods
    D. Local Interface Spoofing

  • Question 307:

    Which feature or command provides the easiest path for Security Administrators to revert to earlier versions of the same Security Policy and objects configuration?

    A. upgrade_export/upgrade_import
    B. dbexport/dbimport
    C. Database Revision Control
    D. Policy Package management

  • Question 308:

    Which of the following commands can be used to remove site-to-site IPsec Security Association (SA)?

    A. vpn tu
    B. vpn ipsec
    C. vpn debug ipsec
    D. fw ipsec tu

  • Question 309:

    A client has created a new Gateway object that will be managed at a remote location. When the client attempts to install the Security Policy to the new Gateway object, the object does not appear in the Install On check box. What should you look for?

    A. Secure Internal Communications (SIC) not configured for the object.
    B. A Gateway object created using the Check Point > Security Gateway option in the network objects, dialog box, but still needs to configure the interfaces for the Security Gateway object.
    C. A Gateway object created using the Check Point > Externally Managed VPN Gateway option from the Network Objects dialog box.
    D. Anti-spoofing not configured on the interfaces on the Gateway object.

  • Question 310:

    Which Client Authentication sign-on method requires the user to first authenticate via the User Authentication mechanism, when logging in to a remote server with Telnet?

    A. Agent Automatic Sign On
    B. Partially Automatic Sign On
    C. Standard Sign On
    D. Manual Sign On

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.13 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.