1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 301:

    Which set of objects have an Authentication tab?

    A. Templates, Users
    B. Users, Networks
    C. Users, User Groups
    D. Networks, Hosts

  • Question 302:

    Where do you verify that UserDirectory is enabled?

    A. Verify that Security Gateway > General Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked
    B. Verify that Global Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked
    C. Verify that Security Gateway > General Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked
    D. Verify that Global Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked

  • Question 303:

    Which of the following options is available with the GAiA cpconfig utility on a Management Server?

    A. Export setup
    B. DHCP Server configuration
    C. GUI Clients
    D. Time and Date

  • Question 304:

    NAT can NOT be configured on which of the following objects?

    A. HTTP Logical Server
    B. Gateway
    C. Address Range
    D. Host

  • Question 305:

    Which of the following is a hash algorithm?

    A. 3DES
    B. IDEA
    C. DES
    D. MD5

  • Question 306:

    For remote user authentication, which authentication scheme is NOT supported?

    A. Check Point Password
    B. RADIUS
    C. TACACS
    D. SecurID

  • Question 307:

    The third-shift Administrator was updating Security Management Server access settings in Global Properties. He managed to lock all administrators out of their accounts. How should you unlock these accounts?

    A. Delete the file admin.lock in the Security Management Server directory $FWDIR/tmp/.
    B. Reinstall the Security Management Server and restore using upgrade_import.
    C. Type fwm lock_admin -ua from the Security Management Server command line.
    D. Login to SmartDashboard as the special cpconfig_admin user account; right-click on each administrator object and select unlock.

  • Question 308:

    A snapshot delivers a complete GAiA backup. The resulting file can be stored on servers or as a local file in /var/CPsnapshot/snapshots. How do you restore a local snapshot named MySnapshot.tgz?

    A. Reboot the system and call the start menu. Select the option Snapshot Management, provide the Expert password and select [L] for a restore from a local file. Then, provide the correct file name.
    B. As expert user, type the command snapshot -r MySnapshot.tgz.
    C. As expert user, type the command revert --file MySnapshot.tgz.
    D. As expert user, type the command snapshot - R to restore from a local file. Then, provide the correct file name.

  • Question 309:

    You are a Security Administrator who has installed Security Gateway R77 on your network. You need to allow a specific IP address range for a partner site to access your intranet Web server. To limit the partner's access for HTTP and FTP

    only, you did the following:

    1) Created manual Static NAT rules for the Web server.

    2) Cleared the following settings in the Global Properties > Network Address Translation screen:

    -Allow bi-directional NAT

    -

    Translate destination on client side Do the above settings limit the partner's access?

    A. Yes. This will ensure that traffic only matches the specific rule configured for this traffic, and that the Gateway translates the traffic after accepting the packet.
    B. No. The first setting is not applicable. The second setting will reduce performance.
    C. Yes. Both of these settings are only applicable to automatic NAT rules.
    D. No. The first setting is only applicable to automatic NAT rules. The second setting will force translation by the kernel on the interface nearest to the client.

  • Question 310:

    What is a possible reason for the IKE failure shown in this screenshot?

    A. Mismatch in VPN Domains.
    B. Mismatch in preshared secrets.
    C. Mismatch in Diffie-Hellman group.
    D. Mismatch in encryption schemes.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.