1. Home
  2. CheckPoint
  3. 156-215.77

Check Point Certified Security Administrator

Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :60 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint Checkpoint Certifications 156-215.77 Questions & Answers

  • Question 101:

    Central license management allows a Security Administrator to perform which of the following functions?

    1.

    Check for expired licenses.

    2.

    Sort licenses and view license properties.

    3.

    Attach both R77 Central and Local licesnes to a remote module.

    4.

    Delete both R77 Local Licenses and Central licenses from a remote module.

    5.

    Add or remove a license to or from the license repository.

    6.

    Attach and/or delete only R77 Central licenses to a remote module (not Local licenses).

    A. 1, 2, 5, and 6

    B. 2, 3, 4, and 5

    C. 2, 5, and 6

    D. 1, 2, 3, 4, and 5

  • Question 102:

    Identify the correct step performed by SmartUpdate to upgrade a remote Security Gateway. After selecting Packages > Distribute and Install Selected Package and choosing the target Gateway, the:

    A. selected package is copied from the Package Repository on the Security Management Server to the Security Gateway and the installation IS performed.

    B. SmartUpdate wizard walks the Administrator through a distributed installation.

    C. selected package is copied from the Package Repository on the Security Management Server to the Security Gateway but the installation IS NOT performed.

    D. selected package is copied from the SmartUpdate PC CD-ROM directly to the Security Gateway and the installation IS performed.

  • Question 103:

    How do you recover communications between your Security Management Server and Security Gateway if you lock yourself out through a rule or policy mis-configuration?

    A. fw unload policy

    B. fw unloadlocal

    C. fw delete all.all@localhost

    D. fwm unloadlocal

  • Question 104:

    What CANNOT be configured for existing connections during a policy install?

    A. Keep all connections

    B. Keep data connections

    C. Re-match connections

    D. Reset all connections

  • Question 105:

    Where is the fingerprint generated, based on the output display? Exhibit:

    A. SmartConsole

    B. SmartUpdate

    C. Security Management Server

    D. SmartDashboard

  • Question 106:

    Which statement is TRUE about implicit rules?

    A. You create them in SmartDashboard.

    B. The Gateway enforces implicit rules that enable outgoing packets only.

    C. Changes to the Security Gateway's default settings do not affect implicit rules.

    D. They are derived from Global Properties and explicit object properties.

  • Question 107:

    To check the Rule Base, some rules can be hidden so they do not distract the administrator from the

    unhidden rules. Assume that only rules accepting HTTP or SSH will be shown.

    How do you accomplish this?

    A. Ask your reseller to get a ticket for Check Point SmartUse and deliver him the Security Management Server cpinfo file.

    B. In SmartDashboard, right-click in the column field Service > Query Column. Then, put the services HTTP and SSH in the list. Do the same in the field Action and select Accept here.

    C. In SmartDashboard menu, select Search > Rule Base Queries. In the window that opens, create a new Query, give it a name (e.g. "HTTP_SSH?) and define a clause regarding the two services HTTP and SSH. When having applied this, define a second clause for the action Accept and combine them with the Boolean operator AND.

    D. This cannot be configured since two selections (Service, Action) are not possible.

  • Question 108:

    What command with appropriate switches would you use to test Identity Awareness connectivity?

    A. test_ldap

    B. test_ad_connectivity

    C. test_ldap_connectivity

    D. test_ad

  • Question 109:

    Why should the upgrade_export configuration file (.tgz) be deleted after you complete the import process?

    A. SmartUpdate will start a new installation process if the machine is rebooted.

    B. It will prevent a future successful upgrade_export since the .tgz file cannot be overwritten.

    C. It contains your security configuration, which could be exploited.

    D. It will conflict with any future upgrades when using SmartUpdate.

  • Question 110:

    You have configured SNX on the Security Gateway. The client connects to the Security Gateway and the user enters the authentication credentials. What must happen after authentication that allows the client to connect to the Security Gateway's VPN domain?

    A. SNX modifies the routing table to forward VPN traffic to the Security Gateway.

    B. An office mode address must be obtained by the client.

    C. The SNX client application must be installed on the client.

    D. Active-X must be allowed on the client.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.