1. Home
  2. CheckPoint
  3. 156-215.80

Check Point Certified Security Administrator (CCSA)

Exam Details

  • Exam Code
    :156-215.80
  • Exam Name
    :Check Point Certified Security Administrator (CCSA)
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :535 Q&As
  • Last Updated
    :May 10, 2025

CheckPoint Checkpoint Certifications 156-215.80 Questions & Answers

  • Question 311:

    Which R77 GUI would you use to see number of packets accepted since the last policy install?

    A. SmartView Monitor

    B. SmartView Tracker

    C. SmartDashboard

    D. SmartView Status

  • Question 312:

    Which of the following firewall modes DOES NOT allow for Identity Awareness to be deployed?

    A. Bridge

    B. Load Sharing

    C. High Availability

    D. Fail Open

  • Question 313:

    What is the Manual Client Authentication TELNET port?

    A. 23

    B. 264

    C. 900

    D. 259

  • Question 314:

    Jennifer McHanry is CEO of ACME. She recently bought her own personal iPad. She wants use her iPad

    to access the internal Finance Web server. Because the iPad is not a member of the Active Directory

    domain, she cannot identify seamlessly with AD Query. However, she can enter her AD credentials in the

    Captive Portal and then get the same access as on her office computer. Her access to resources is based

    on rules in the R77 Firewall Rule Base.

    To make this scenario work, the IT administrator must:

    1) Enable Identity Awareness on a gateway and select Captive Portal as one of the Identity Sources.

    2) In the Portal Settings window in the User Access section, make sure that Name and password login is

    selected.

    3) Create a new rule in the Firewall Rule Base to let Jennifer McHanry access network destinations. Select

    accept as the Action.

    4) Install policy.

    Ms McHanry tries to access the resource but is unable. What should she do?

    A. Have the security administrator select the Action field of the Firewall Rule "Redirect HTTP connections to an authentication (captive) portal".

    B. Have the security administrator reboot the firewall.

    C. Have the security administrator select Any for the Machines tab in the appropriate Access Role.

    D. Install the Identity Awareness agent on her iPad.

  • Question 315:

    What is Consolidation Policy?

    A. The collective name of the Security Policy, Address Translation, and IPS Policies.

    B. The specific Policy written in SmartDashboard to configure which log data is stored in the SmartReporter database.

    C. The collective name of the logs generated by SmartReporter.

    D. A global Policy used to share a common enforcement policy for multiple Security Gateways.

  • Question 316:

    Where do you verify that UserDirectory is enabled?

    A. Verify that Security Gateway > General Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked

    B. Verify that Global Properties > Authentication > Use UserDirectory (LDAP) for Security Gateways is checked.

    C. Verify that Security Gateway > General Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked.

    D. Verify that Global Properties > UserDirectory (LDAP) > Use UserDirectory (LDAP) for Security Gateways is checked.

  • Question 317:

    Which of the following actions do NOT take place in IKE Phase 1?

    A. Peers agree on encryption method.

    B. Diffie-Hellman key is combined with the key material to produce the symmetrical IPsec key.

    C. Peers agree on integrity method.

    D. Each side generates a session key from its private key and peer's public key.

  • Question 318:

    Which of the following are available SmartConsole clients which can be installed from the R77 Windows CD? Read all answers and select the most complete and valid list.

    A. SmartView Tracker, SmartDashboard, CPINFO, SmartUpdate, SmartView Status

    B. SmartView Tracker, SmartDashboard, SmartLSM, SmartView Monitor

    C. SmartView Tracker, CPINFO, SmartUpdate

    D. Security Policy Editor, Log Viewer, Real Time Monitor GUI

  • Question 319:

    You have configured SNX on the Security Gateway. The client connects to the Security Gateway and the user enters the authentication credentials. What must happen after authentication that allows the client to connect to the Security Gateway's VPN domain?

    A. SNX modifies the routing table to forward VPN traffic to the Security Gateway.

    B. An office mode address must be obtained by the client.

    C. The SNX client application must be installed on the client.

    D. Active-X must be allowed on the client.

  • Question 320:

    All R77 Security Servers can perform authentication with the exception of one. Which of the Security Servers can NOT perform authentication?

    A. FTP

    B. SMTP

    C. HTTP

    D. RLOGIN

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-215.80 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.