1. Home
  2. CheckPoint
  3. 156-215.77

Check Point Certified Security Administrator

Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :CCSA R77
  • Vendor
    :CheckPoint
  • Total Questions
    :388 Q&As
  • Last Updated
    :May 09, 2024

CheckPoint CCSA R77 156-215.77 Questions & Answers

  • Question 21:

    The R77 fw monitor utility is used to troubleshoot which of the following problems?

    A. Traffic issues

    B. Log Consolidation Engine

    C. User data base corruption

    D. Phase two key negotiation

  • Question 22:

    You find a suspicious FTP site trying to connect to one of your internal hosts. How do you block it in real time and verify it is successfully blocked? Highlight the suspicious connection in SmartView Tracker:

    A. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection does not appear again in this SmartView Tracker view.

    B. Log mode. Block it using Tools > Block Intruder menu. Observe in the Log mode that the suspicious connection is listed in this SmartView Tracker view as "dropped?.

    C. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection does not appear again in this SmartView Tracker view.

    D. Active mode. Block it using Tools > Block Intruder menu. Observe in the Active mode that the suspicious connection is listed in this SmartView Tracker view as "dropped?.

  • Question 23:

    Study the Rule base and Client Authentication Action properties screen

    After being authenticated by the Security Gateway, when a user starts an HTTP connection to a Web site, the user tries to FTP to another site using the command line. What happens to the user?

    A. user is prompted for authentication by the Security Gateway again.

    B. FTP data connection is dropped after the user is authenticated successfully.

    C. user is prompted to authenticate from that FTP site only, and does not need to enter his username and password for Client Authentication.

    D. FTP connection is dropped by Rule 2.

  • Question 24:

    What information is found in the SmartView Tracker Management log?

    A. SIC revoke certificate event

    B. Destination IP address

    C. Most accessed Rule Base rule

    D. Number of concurrent IKE negotiations

  • Question 25:

    ______________ is an R77 component that displays the number of packets accepted, rejected, and dropped on a specific Security Gateway, in real time.

    A. SmartEvent

    B. SmartView Status

    C. SmartUpdate

    D. SmartView Monitor

  • Question 26:

    What information is found in the SmartView Tracker Management log?

    A. Creation of an administrator using cpconfig

    B. GAiA expert login event

    C. FTP username authentication failure

    D. Administrator SmartDashboard logout event

  • Question 27:

    One of your remote Security Gateways suddenly stops sending logs, and you cannot install the Security Policy on the Gateway. All other remote Security Gateways are logging normally to the Security Management Server, and Policy installation is not affected. When you click the Test SIC status button in the problematic Gateway object, you receive an error message. What is the problem?

    A. The remote Gateway's IP address has changed, which invalidates the SIC Certificate.

    B. The time on the Security Management Server's clock has changed, which invalidates the remote Gateway's Certificate.

    C. The Internal Certificate Authority for the Security Management Server object has been removed from objects_5_0.c.

    D. There is no connection between the Security Management Server and the remote Gateway. Rules or routing may block the connection.

  • Question 28:

    What is the difference between Standard and Specific Sign On methods?

    A. Standard Sign On allows the user to be automatically authorized for all services that the rule allows. Specific Sign On requires that the user re-authenticate for each service specifically defined in the window Specific Action Properties.

    B. Standard Sign On allows the user to be automatically authorized for all services that the rule allows, but re-authenticate for each host to which he is trying to connect. Specific Sign On requires that the user re-authenticate for each service.

    C. Standard Sign On allows the user to be automatically authorized for all services that the rule allows. Specific Sign On requires that the user re-authenticate for each service and each host to which he is trying to connect.

    D. Standard Sign On requires the user to re-authenticate for each service and each host to which he is trying to connect. Specific Sign On allows the user to sign on only to a specific IP address.

  • Question 29:

    What port is used for communication to the User Center with SmartUpdate?

    A. CPMI 200

    B. TCP 8080

    C. HTTP 80

    D. HTTPS 443

  • Question 30:

    Which NAT option is available for Manual NAT as well as Automatic NAT?

    A. B. Automatic ARP configuration

    B. C. Translate destination on client-side

    C. D. Enable IP Pool NAT

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.