1. Home
  2. CheckPoint
  3. 156-215.75

CheckPoint 156-215.75 Online Practice Questions and Exam Preparation

156-215.75 Exam Details

  • Exam Code
    :156-215.75
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :629 Q&As
  • Last Updated
    :Jun 05, 2026

CheckPoint 156-215.75 Online Questions & Answers

  • Question 121:

    If no flags are defined during a back up on the Security Management Server, where does the system store the *.tgz file?

    A. /var/opt/backups
    B. /var/backups
    C. /var/CPbackup/backups
    D. /var/tmp/backups

  • Question 122:

    You have three Gateways in a mesh community. Each gateway's VPN Domain is their internal network as defined on the Topology tab setting All IP Addresses behind Gateway based on Topology information.

    You want to test the route-based VPN, so you created VTIs among the Gateways and created static route entries for the VTIs. However, when you test the VPN, you find out the VPN still go through the regular domain IPsec tunnels instead of

    the routed VTI tunnels.

    What is the problem and how do you make the VPN use the VTI tunnels?

    A. Domain VPN takes precedence over the route-based VTI. To make the VPN go through VTI, remove the Gateways out of the mesh community and replace with a star community
    B. Route-based VTI takes precedence over the Domain VPN. Troubleshoot the static route entries to insure that they are correctly pointing to the VTI gateway IP.
    C. Route-based VTI takes precedence over the Domain VPN. To make the VPN go through VTI, use dynamic-routing protocol like OSPF or BGP to route the VTI address to the peer instead of static routes
    D. Domain VPN takes precedence over the route-based VTI. To make the VPN go through VTI, use an empty group object as each Gateway's VPN Domain

  • Question 123:

    You have two IP Appliances: one IP565 and one IP395. Both appliances have IPSO 6.2 and R75 installed in a distributed deployment. Can they be members of a Gateway Cluster?

    A. No, because the Security Gateways must be installed in a stand-alone installation.
    B. No, because IP does not have a cluster option.
    C. Yes, as long as they have the same IPSO and Check Point versions.
    D. No, because the appliances must be of the same model (both should be IP565 or IP395).

  • Question 124:

    With the User Directory Software Blade, you can create R75 user definitions on a(n) _________ Server.

    A. SecureID
    B. LDAP
    C. NT Domain
    D. Radius

  • Question 125:

    A cluster contains two members, with external interfaces 172.28.108.1 and 172.28.108.2. The internal interfaces are 10.4.8.1 and 10.4.8.2. The external cluster's IP address is 172.28.108.3, and the internal cluster's IP address is 10.4.8.3. The synchronization interfaces are 192.168.1.1 and 192.168.1.2. The Security Administrator discovers State Synchronization is not working properly, cphaprob if command output displays as follows: What is causing the State Synchronization problem?

    A. Another cluster is using 192.168.1.3 as one of the unprotected interfaces.
    B. Interfaces 192.168.1.1 and 192.168.1.2 have defined 192.168.1.3 as a suB. interface.
    C. The synchronization interface on the cluster member object's Topology tab is enabled with "Cluster Interface". Disable this interface.
    D. The synchronization network has a cluster, with IP address 192.168.1.3 defined in the gateway- cluster object. Remove the 192.168.1.3 VIP interface from the cluster topology.

  • Question 126:

    How is Smart Workflow disabled?

    A. In cpconfig, choose Disable Smart Workflow from the menu
    B. In SmartView Tracker, click on SmartWorkflow > Disable Smart Workflow
    C. In SmartDashboard, click on View > Smart Workflow > Disable Smart Workflow
    D. Open Smart Workflow as admin. Create new session and name it Disable Smart Workflow. In SmartDashboard click Smart Workflow > Disable Smart Workflow, click OK in the warning box, click Save and Continue

  • Question 127:

    Which of the following provides a unique user ID for a digital Certificate?

    A. Username
    B. User-message digest
    C. User e-mail
    D. User organization

  • Question 128:

    DRAG DROP

    Match the ClusterXL Modes with their configurations.

    Select and Place:

  • Question 129:

    SSL termination takes place:

    A. In a LAN deployment on a Security Gateway
    B. In a DMZ and LAN deployment scenario on a Security Gateway
    C. In a DMZ and LAN deployment scenario on a Connectra Gateway
    D. In a DMZ deployment on a Connectra Gateway

  • Question 130:

    Public-key cryptography is considered which of the following?

    A. two-key/symmetric
    B. one-key/asymmetric
    C. two-key/asymmetric
    D. one-key/symmetric

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.75 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.