1. Home
  2. CheckPoint
  3. 156-215.77

CheckPoint 156-215.77 Online Practice Questions and Exam Preparation

156-215.77 Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :358 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint 156-215.77 Online Questions & Answers

  • Question 71:

    Your R77 primary Security Management Server is installed on GAiA. You plan to schedule the Security Management Server to run fw logswitch automatically every 48 hours. How do you create this schedule?

    A. On a GAiA Security Management Server, this can only be accomplished by configuring the command fw logswitch via the cron utility.
    B. Create a time object, and add 48 hours as the interval. Open the primary Security Management Server object's Logs and Masters window, enable Schedule log switch, and select the Time object.
    C. Create a time object, and add 48 hours as the interval. Open the Security Gateway object's Logs and Masters window, enable Schedule log switch, and select the Time object.
    D. Create a time object, and add 48 hours as the interval. Select that time object's Global Properties > Logs and Masters window, to schedule a logswitch.

  • Question 72:

    Which of the following is a viable consideration when determining Rule Base order?

    A. Grouping rules by date of creation
    B. Grouping reject and drop rules after the Cleanup Rule
    C. Grouping authentication rules with address-translation rules
    D. Grouping functionally related rules together

  • Question 73:

    You have just installed your Gateway and want to analyze the packet size distribution of your traffic with SmartView Monitor.

    Unfortunately, you get the message.

    "There are no machines that contain Firewall Blade and SmartView Monitor."

    What should you do to analyze the packet size distribution of your traffic? Give the BEST answer.

    A. Purchase the SmartView Monitor license for your Security Management Server.
    B. Enable Monitoring on your Security Management Server.
    C. Purchase the SmartView Monitor license for your Security Gateway.
    D. Enable Monitoring on your Security Gateway.

  • Question 74:

    ALL of the following options are provided by the GAiA sysconfig utility, EXCEPT:

    A. Export setup
    B. DHCP Server configuration
    C. Time and Date
    D. GUI Clients

  • Question 75:

    How are cached usernames and passwords cleared from the memory of a R77 Security Gateway?

    A. By using the Clear User Cache button in SmartDashboard.
    B. Usernames and passwords only clear from memory after they time out.
    C. By retrieving LDAP user information using the command fw fetchldap.
    D. By installing a Security Policy.

  • Question 76:

    By default, when you click File > Switch Active File in SmartView Tracker, the Security Management Server:

    A. Saves the current log file, names the log file by date and time, and starts a new log file.
    B. Purges the current log file, and starts a new log file.
    C. Prompts you to enter a filename, and then saves the log file.
    D. Purges the current log file, and prompts you for the new log's mode.

  • Question 77:

    A company has disabled logging for some of the most commonly used Policy rules. This was to decrease load on the Security Management Server and to make tracking dropped connections easier. What action would you recommend to get reliable statistics about the network traffic using SmartReporter?

    A. SmartReporter analyzes all network traffic, logged or not.
    B. Network traffic cannot be analyzed when the Security Management Server has a high load.
    C. Turn the field Track of each rule to LOG.
    D. Configure Additional Logging on an additional log server.

  • Question 78:

    You want to reset SIC between smberlin and sgosaka.

    In SmartDashboard, you choose sgosaka, Communication, Reset. On sgosaka, you start cpconfig, choose Secure Internal Communication and enter the new SIC Activation Key. The screen reads The SIC was successfully initialized and jumps back to the cpconfig menu. When trying to establish a connection, instead of a working connection, you receive this error message:

    What is the reason for this behavior?

    A. The Gateway was not rebooted, which is necessary to change the SIC key.
    B. You must first initialize the Gateway object in SmartDashboard (i.e., right-click on the object, choose Basic Setup > Initialize).
    C. The Check Point services on the Gateway were not restarted because you are still in the cpconfig utility.
    D. The activation key contains letters that are on different keys on localized keyboards. Therefore, the activation can not be typed in a matching fashion.

  • Question 79:

    Which of the following is NOT defined by an Access Role object?

    A. Source Network
    B. Source Machine C. Source User
    D. Source Server

  • Question 80:

    Several Security Policies can be used for different installation targets. The firewall protecting Human Resources' servers should have a unique Policy Package. These rules may only be installed on this machine and not accidentally on the Internet firewall. How can this be configured?

    A. When selecting the correct firewall in each line of the row Install On of the Rule Base, only this firewall is shown in the list of possible installation targets after selecting Policy > Install.
    B. A Rule Base can always be installed on any Check Point firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install.
    C. In the SmartDashboard policy, select the correct firewall to be the Specific Target of the rule.
    D. A Rule Base is always installed on all possible targets. The rules to be installed on a firewall are defined by the selection in the row Install On of the Rule Base.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.