156-215.77 Exam Details
-
Exam Code
:156-215.77 -
Exam Name
:Check Point Certified Security Administrator -
Certification
:Checkpoint Certifications -
Vendor
:CheckPoint -
Total Questions
:358 Q&As -
Last Updated
:Dec 13, 2024
CheckPoint 156-215.77 Online Questions & Answers
-
Question 131:
What happens if the identity of a user is known?
A. If the user credentials do not match an Access Role, the system displays the Captive Portal.
B. If the user credentials do not match an Access Role, the system displays a sandbox.
C. If the user credentials do not match an Access Role, the traffic is automatically dropped.
D. If the user credentials match an Access Role, the rule is applied and traffic is accepted or dropped based on the defined action. -
Question 132:
The customer has a small Check Point installation which includes one Windows 2008 server as the SmartConsole and a second server running GAiA as both Security Management Server and the Security Gateway. This is an example of a (n):
A. Distributed Installation
B. Unsupported configuration
C. Hybrid Installation
D. Stand-Alone Installation -
Question 133:
When you hide a rule in a Rule Base, how can you then disable the rule?
A. Hidden rules are already effectively disabled from Security Gateway enforcement.
B. Right-click on the hidden rule place-holder bar and select Disable Rule(s).
C. Right-click on the hidden rule place-holder bar and uncheck Hide, then right-click and select Disable Rule(s); re-hide the rule.
D. Use the search utility in SmartDashboard to view all hidden rules. Select the relevant rule and click Disable Rule(s). -
Question 134:
You find a suspicious connection from a problematic host. You decide that you want to block everything from that whole network, not just the problematic host. You want to block this for an hour while you investigate further, but you do not want to add any rules to the Rule Base. How do you achieve this?
A. Use dbedit to script the addition of a rule directly into the Rule Bases_5_0.fws configuration file.
B. Select Block intruder from the Tools menu in SmartView Tracker.
C. Create a Suspicious Activity Rule in SmartView Monitor.
D. Add a temporary rule using SmartDashboard and select hide rule. -
Question 135:
______________ is an R77 component that displays the number of packets accepted, rejected, and dropped on a specific Security Gateway, in real time.
A. SmartEvent
B. SmartView Status
C. SmartUpdate
D. SmartView Monitor -
Question 136:
To qualify as an Identity Awareness enabled rule, which column MAY include an Access Role?
A. Action
B. Source
C. User
D. Track -
Question 137:
In SmartDashboard, you configure 45 MB as the required free hard-disk space to accommodate logs. What can you do to keep old log files, when free space falls below 45 MB?
A. Do nothing. Old logs are deleted, until free space is restored.
B. Use the command fwm logexport to export the old log files to another location.
C. Configure a script to run fw logswitch and SCP the output file to a separate file server.
D. Do nothing. The Security Management Server automatically copies old logs to a backup server before purging. -
Question 138:
What is the officially accepted diagnostic tool for IP Appliance Support?
A. ipsoinfo
B. CST
C. uag-diag
D. cpinfo -
Question 139:
Choose the BEST sequence for configuring user management in SmartDashboard, using an LDAP server.
A. Configure a server object for the LDAP Account Unit, enable LDAP in Global Properties, and create an LDAP resource object.
B. Configure a workstation object for the LDAP server, configure a server object for the LDAP Account Unit, and enable LDAP in Global Properties.
C. Enable User Directory in Global Properties, configure a host-node object for the LDAP server, and configure a server object for the LDAP Account Unit.
D. Configure a server object for the LDAP Account Unit, and create an LDAP resource object. -
Question 140:
In the Rule Base displayed for fwsingapore, user authentication in Rule 4 is configured as fully automatic. Eric is a member of the LDAP group, MSD_Group. What happens when Eric tries to connect to a server on the Internet?
A. None of these things will happen.
B. Eric will be authenticated and get access to the requested server.
C. Eric will be blocked because LDAP is not allowed in the Rule Base.
D. Eric will be dropped by the Stealth Rule.
Related Exams:
-
156-110
Check Point Certified Security Principles Associate (CCSPA) -
156-115.80
Check Point Certified Security Master - R80 -
156-215
Check Point Security Administration NGX -
156-215.1
Check Point Certified Security Administrator NGX -
156-215.70
Check Point Certified Security Administrator R70 -
156-215.71
Check Point Certified Security Administrator R71 -
156-215.75
Check Point Certified Security Administrator -
156-215.80
Check Point Certified Security Administrator (CCSA) -
156-215.81
Check Point Certified Security Administrator - R81 (CCSA) -
156-215.81.20
Check Point Certified Security Administrator - R81.20 (CCSA)
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.