1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 261:

    The customer has a small Check Point installation, which includes one GAiA server working as the SmartConsole, and a second server running Windows 2008 as both Security Management Server and Security Gateway. This is an example of a(n):

    A. Distributed Installation
    B. Hybrid Installation
    C. Unsupported configuration
    D. Stand-Alone Installation

  • Question 262:

    In SmartDashboard, Translate destination on client side is checked in Global Properties. When Network Address Translation is used:

    A. It is not necessary to add a static route to the Gateway's routing table.
    B. It is necessary to add a static route to the Gateway's routing table.
    C. The Security Gateway's ARP file must be modified.
    D. VLAN tagging cannot be defined for any hosts protected by the Gateway.

  • Question 263:

    The London Security Gateway Administrator has just installed the Security Gateway and Management Server. He has not changed any default settings. As he tries to configure the Gateway, he is unable to connect.

    Which troubleshooting suggestion will NOT help him?

    A. Check if some intermediate network device has a wrong routing table entry, VLAN assignment, duplex-mismatch, or trunk issue.
    B. Test the IP address assignment and routing settings of the Security Management Server, Gateway, and console client.
    C. Verify the SIC initialization.
    D. Verify that the Rule Base explicitly allows management connections.

  • Question 264:

    John Adams is an HR partner in the ACME organization. ACME IT wants to limit access to HR servers to designated IP addresses to minimize malware infection and unauthorized access risks. Thus, the gateway policy permits access only

    from John's desktop which is assigned an IP address 10.0.0.19 via DHCP.

    John received a laptop and wants to access the HR Web Server from anywhere in the organization. The IT department gave the laptop a static IP address, but that limits him to operating it only from his desk. The current Rule Base contains a

    rule that lets John Adams access the HR Web Server from his laptop. He wants to move around the organization and continue to have access to the HR Web Server.

    To make this scenario work, the IT administrator:

    1) Enables Identity Awareness on a gateway, selects AD Query as one of the Identity Sources installs the policy.

    2) Adds an access role object to the Firewall Rule Base that lets John Adams PC access the HR Web Server from any machine and from any location.

    John plugged in his laptop to the network on a different network segment and he is not able to connect. How does he solve this problem?

    A. John should install the Identity Awareness Agent
    B. The firewall admin should install the Security Policy
    C. John should lock and unlock the computer
    D. Investigate this as a network connectivity issue

  • Question 265:

    The technical-support department has a requirement to access an intranet server. When configuring a User Authentication rule to achieve this, which of the following should you remember?

    A. You can only use the rule for Telnet, FTP, SMTP, and rlogin services.
    B. The Security Gateway first checks if there is any rule that does not require authentication for this type of connection before invoking the Authentication Security Server.
    C. Once a user is first authenticated, the user will not be prompted for authentication again until logging out.
    D. You can limit the authentication attempts in the User Properties' Authentication tab.

  • Question 266:

    You want to establish a VPN, using certificates. Your VPN will exchange certificates with an external partner. Which of the following activities should you do first?

    A. Create a new logical-server object to represent your partner's CA.
    B. Exchange exported CA keys and use them to create a new server object to represent your partner's Certificate Authority (CA).
    C. Manually import your partner's Certificate Revocation List.
    D. Manually import your partner's Access Control List.

  • Question 267:

    Where are custom queries stored in R77 SmartView Tracker?

    A. On the SmartView Tracker PC local file system under the user's profile.
    B. On the Security Management Server tied to the GUI client IP.
    C. On the Security Management Server tied to the Administrator User Database login name.
    D. On the SmartView Tracker PC local file system shared by all users of that local PC.

  • Question 268:

    Identify the ports to which the Client Authentication daemon listens by default.

    A. 259, 900
    B. 256, 600
    C. 80, 256
    D. 8080, 529

  • Question 269:

    To check the Rule Base, some rules can be hidden so they do not distract the administrator from the unhidden rules. Assume that only rules accepting HTTP or SSH will be shown. How do you accomplish this?

    A. Ask your reseller to get a ticket for Check Point SmartUse and deliver him the Security Management Server cpinfo file.
    B. In SmartDashboard, right-click in the column field Service > Query Column. Then, put the services HTTP and SSH in the list. Do the same in the field Action and select Accept here.
    C. In SmartDashboard menu, select Search > Rule Base Queries. In the window that opens, create a new Query, give it a name (e.g. "HTTP_SSH?) and define a clause regarding the two services HTTP and SSH. When having applied this, define a second clause for the action Accept and combine them with the Boolean operator AND.
    D. This cannot be configured since two selections (Service, Action) are not possible.

  • Question 270:

    When you change an implicit rule's order from Last to First in Global Properties, how do you make the change take effect?

    A. Run fw fetch from the Security Gateway.
    B. Select Install Database from the Policy menu.
    C. Select Save from the File menu.
    D. Reinstall the Security Policy.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.