1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 201:

    A Security Policy installed by another Security Administrator has blocked all SmartDashboard connections to the stand-alone installation of R77. After running the command fw unloadlocal, you are able to reconnect with SmartDashboard and view all changes. Which of the following change is the most likely cause of the block?

    A. The Allow Control Connections setting in Policy > Global Properties has been unchecked.
    B. A Stealth Rule has been configured for the R77 Gateway.
    C. The Security Policy installed to the Gateway had no rules in it.
    D. The Gateway Object representing your Gateway was configured as an Externally Managed VPN Gateway.

  • Question 202:

    Why should the upgrade_export configuration file (.tgz) be deleted after you complete the import process?

    A. SmartUpdate will start a new installation process if the machine is rebooted.
    B. It will prevent a future successful upgrade_export since the .tgz file cannot be overwritten.
    C. It contains your security configuration, which could be exploited.
    D. It will conflict with any future upgrades when using SmartUpdate.

  • Question 203:

    Where can an administrator specify the notification action to be taken by the firewall in the event that available disk space drops below 15%?

    A. SmartView Monitor > Gateway Status > Threshold Settings
    B. SmartView Tracker > Audit Tab > Gateway Counters
    C. SmartView Monitor > Gateway Status > System Information > Thresholds
    D. This can only be monitored by a user-defined script.

  • Question 204:

    Which SmartView Tracker mode allows you to read the SMTP e-mail body sent from the Chief Executive Officer (CEO) of a company?

    A. This is not a SmartView Tracker feature.
    B. Display Capture Action
    C. Network and Endpoint Tab
    D. Display Payload View

  • Question 205:

    Which R77 SmartConsole tool would you use to verify the installed Security Policy name on a Security Gateway?

    A. SmartView Tracker
    B. None, SmartConsole applications only communicate with the Security Management Server.
    C. SmartView Server
    D. SmartUpdate

  • Question 206:

    What must a Security Administrator do to comply with a management requirement to log all traffic accepted through the perimeter Security Gateway?

    A. In Global Properties > Reporting Tools check the box Enable tracking all rules (including rules marked as None in the Track column). Send these logs to a secondary log server for a complete logging history. Use your normal log server for standard logging for troubleshooting.
    B. Install the View Implicit Rules package using SmartUpdate.
    C. Define two log servers on the R77 Gateway object. Enable Log Implied Rules on the first log server. Enable Log Rule Base on the second log server. Use SmartReporter to merge the two log server records into the same database for HIPPA log audits.
    D. Check the Log Implied Rules Globally box on the R77 Gateway object.

  • Question 207:

    How many packets does the IKE exchange use for Phase 1 Main Mode?

    A. 12
    B. 1
    C. 3
    D. 6

  • Question 208:

    What is a Consolidation Policy?

    A. The collective name of the Security Policy, Address Translation, and IPS Policies.
    B. The specific Policy written in SmartDashboard to configure which log data is stored in the SmartReporter database.
    C. The collective name of the logs generated by SmartReporter.
    D. A global Policy used to share a common enforcement policy for multiple Security Gateways.

  • Question 209:

    As a Security Administrator, you must refresh the Client Authentication authorization time- out every time a new user connection is authorized. How do you do this? Enable the Refreshable Timeout setting:

    A. in the user object's Authentication screen.
    B. in the Gateway object's Authentication screen.
    C. in the Limit tab of the Client Authentication Action Properties screen.
    D. in the Global Properties Authentication screen.

  • Question 210:

    Complete this statement from the options provided. Using Captive Portal, unidentified users may be either; blocked, allowed to enter required credentials, or required to download the _____________.

    A. Identity Awareness Agent
    B. Full Endpoint Client
    C. ICA Certificate
    D. SecureClient

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.