1. Home
  2. CheckPoint
  3. 156-215.77

Check Point Certified Security Administrator

Exam Details

  • Exam Code
    :156-215.77
  • Exam Name
    :Check Point Certified Security Administrator
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :60 Q&As
  • Last Updated
    :Dec 13, 2024

CheckPoint Checkpoint Certifications 156-215.77 Questions & Answers

  • Question 71:

    Which of the following items should be configured for the Security Management Server to authenticate using LDAP?

    A. Login Distinguished Name and password

    B. Windows logon password

    C. Check Point Password

    D. WMI object

  • Question 72:

    Installing a policy usually has no impact on currently existing connections. Which statement is TRUE?

    A. Users being authenticated by Client Authentication have to re-authenticate.

    B. All connections are reset, so a policy install is recommended during announced downtime only.

    C. All FTP downloads are reset; users have to start their downloads again.

    D. Site-to-Site VPNs need to re-authenticate, so Phase 1 is passed again after installing the Security Policy.

  • Question 73:

    Which item below in a Security Policy would be enforced first?

    A. IP spoofing/IP options

    B. Security Policy First rule

    C. Administrator-defined Rule Base

    D. Network Address Translation

  • Question 74:

    When using LDAP as an authentication method for Identity Awareness, the query:

    A. Requires client and server side software.

    B. Prompts the user to enter credentials.

    C. Requires administrators to specifically allow LDAP traffic to and from the LDAP Server and the Security Gateway.

    D. Is transparent, requiring no client or server side software, or client intervention.

  • Question 75:

    When you hide a rule in a Rule Base, how can you then disable the rule?

    A. Hidden rules are already effectively disabled from Security Gateway enforcement.

    B. Right-click on the hidden rule place-holder bar and select Disable Rule(s).

    C. Right-click on the hidden rule place-holder bar and uncheck Hide, then right-click and select Disable Rule(s); re-hide the rule.

    D. Use the search utility in SmartDashboard to view all hidden rules. Select the relevant rule and click Disable Rule(s).

  • Question 76:

    In a distributed management environment, the administrator has removed the default check from Accept Control Connections under the Policy > Global Properties > FireWall tab. In order for the Security Management Server to install a policy to the Firewall, an explicit rule must be created to allow the server to communicate to the Security Gateway on port ______.

    A. 259

    B. 900

    C. 256

    D. 80

  • Question 77:

    Over the weekend, an Administrator without access to SmartDashboard installed a new R77 Security Gateway using GAiA. You want to confirm communication between the Gateway and the Management Server by installing the Security Policy. What might prevent you from installing the Policy?

    A. You have not established Secure Internal Communications (SIC) between the Security Gateway and Management Server. You must initialize SIC on both the Security Gateway and the Management Server.

    B. You first need to run the command fw unloadlocal on the new Security Gateway.

    C. You first need to initialize SIC in SmartUpdate.

    D. You have not established Secure Internal Communications (SIC) between the Security Gateway and Management Server. You must initialize SIC on the Security Management Server.

  • Question 78:

    What are you required to do before running the command upgrade_export?

    A. Run a cpstop on the Security Gateway.

    B. Run a cpstop on the Security Management Server.

    C. Close all GUI clients.

    D. Run cpconfig and set yourself up as a GUI client.

  • Question 79:

    You are running a R77 Security Gateway on GAiA. In case of a hardware failure, you have a server with the exact same hardware and firewall version installed. What back up method could be used to quickly put the secondary firewall into production?

    A. manual backup

    B. upgrade_export

    C. backup

    D. snapshot

  • Question 80:

    In a distributed management environment, the administrator has removed all default check boxes from the Policy > Global Properties > Firewall tab. In order for the Security Gateway to send logs to the Security Management Server, an explicit rule must be created to allow the Security Gateway to communicate to the Security Management Server on port ______.

    A. 259

    B. 900

    C. 256

    D. 257

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.77 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.