1. Home
  2. CheckPoint
  3. 156-215.13

CheckPoint 156-215.13 Online Practice Questions and Exam Preparation

156-215.13 Exam Details

  • Exam Code
    :156-215.13
  • Exam Name
    :Check Point Certified Security Administrator - GAiA
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :361 Q&As
  • Last Updated
    :Dec 15, 2021

CheckPoint 156-215.13 Online Questions & Answers

  • Question 71:

    If a SmartUpdate upgrade or distribution operation fails on GAiA, how is the system recovered?

    A. The Administrator must remove the rpm packages manually, and re-attempt the upgrade.
    B. GAiA will reboot and automatically revert to the last snapshot version prior to upgrade.
    C. The Administrator can only revert to a previously created snapshot (if there is one) with the command cprinstall snapshot .
    D. The Administrator must reinstall the last version via the command cprinstall revert .

  • Question 72:

    What happens when you open the Gateway object window Trusted Communication and press and confirm Reset?

    A. The Gateway certificate will be revoked on the Security Managment Server only.
    B. The Gateway certificate will be revoked on the Gateway only.
    C. Sic will be reset on the Gateway only.
    D. The Gateway certificate will be revoked on the Security Management Server and SIC will be reset on the Gateway.

  • Question 73:

    Which statement is TRUE about implicit rules?

    A. You create them in SmartDashboard.
    B. The Gateway enforces implicit rules that enable outgoing packets only.
    C. Changes to the Security Gateway's default settings do not affect implicit rules.
    D. They are derived from Global Properties and explicit object properties.

  • Question 74:

    A Security Policy has several database versions. What configuration remains the same no matter which version is used?

    A. Objects_5_0.C
    B. fwauth.NDB
    C. Rule Bases_5_0.fws
    D. Internal Certificate Authority (ICA) certificate

  • Question 75:

    When using AD Query to authenticate users for Identity Awareness, identity data is received seamlessly from the Microsoft Active Directory (AD). What is NOT a recommended usage of this method?

    A. Leveraging identity in the application control blade
    B. Identity-based enforcement for non-AD users (non-Windows and guest users)
    C. Identity-based auditing and logging
    D. Basic identity enforcement in the internal network

  • Question 76:

    Which of the following are available SmartConsole clients which can be installed from the R76 Windows CD? Read all answers and select the most complete and valid list.

    A. SmartView Tracker, CPINFO, SmartUpdate
    B. SmartView Tracker, SmartDashboard, SmartLSM, SmartView Monitor
    C. SmartView Tracker, SmartDashboard, CPINFO, SmartUpdate, SmartView Status
    D. Security Policy Editor, Log Viewer, Real Time Monitor GUI

  • Question 77:

    Which item below in a Security Policy would be enforced first?

    A. Network Address Translation
    B. Security Policy First rule
    C. Administrator-defined Rule Base
    D. IP spoofing/IP options

  • Question 78:

    You have installed a R76 Security Gateway on GAiA. To manage the Gateway from the enterprise Security Management Server, you create a new Gateway object and Security Policy. When you install the new Policy from the Policy menu, the Gateway object does not appear in the Install Policy window as a target. What is the problem?

    A. The new Gateway's temporary license has expired.
    B. The object was created with Node > Gateway.
    C. The Gateway object is not specified in the first policy rule column Install On.
    D. No Masters file is created for the new Gateway.

  • Question 79:

    A Security Policy installed by another Security Administrator has blocked all SmartDashboard connections to the stand-alone installation of R76. After running the command fw unloadlocal, you are able to reconnect with SmartDashboard and view all changes. Which of the following change is the most likely cause of the block?

    A. A Stealth Rule has been configured for the R76 Gateway.
    B. The Gateway Object representing your Gateway was configured as an Externally Managed VPN Gateway.
    C. The Security Policy installed to the Gateway had no rules in it.
    D. The Allow Control Connections setting in Policy > Global Properties has been unchecked.

  • Question 80:

    You are a Security Administrator using one Security Management Server managing three different firewalls. One firewall does NOT show up in the dialog box when attempting to install a Security Policy. Which of the following is a possible cause?

    A. The firewall has failed to sync with the Security Management Server for 60 minutes.
    B. The firewall object has been created but SIC has not yet been established.
    C. The firewall is not listed in the Policy Installation Targets screen for this policy package.
    D. The license for this specific firewall has expired.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.13 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.