1. Home
  2. CheckPoint
  3. 156-915.80

CheckPoint 156-915.80 Online Practice Questions and Exam Preparation

156-915.80 Exam Details

  • Exam Code
    :156-915.80
  • Exam Name
    :Check Point Certified Security Expert Update - R80.10
  • Certification
    :Checkpoint Certifications
  • Vendor
    :CheckPoint
  • Total Questions
    :536 Q&As
  • Last Updated
    :May 28, 2026

CheckPoint 156-915.80 Online Questions & Answers

  • Question 201:

    Users with Identity Awareness Agent installed on their machines login with __________, so that when the user logs into the domain, that information is also used to meet Identity Awareness credential requests.

    A. Key-logging
    B. ICA Certificates
    C. SecureClient
    D. Single Sign-On

  • Question 202:

    What is the correct command to observe the Sync traffic in a VRRP environment?

    A. fw monitor -e "accept [12:4,b]=224.0.0.18;"
    B. fw monitor -e "accept port(6118;"
    C. fw monitor -e "accept proto=mcVRRP;"
    D. fw monitor -e "accept dst=224.0.0.18;"

  • Question 203:

    Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked. What can be done to unlock Peter's account? Give the BEST answer.

    A. You can unlock Peter's account by using the command fwm lock_admin -u Peter on the Security Management Server.
    B. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Management Server
    C. It is not possible to unlock Peter's account. You have to install the firewall once again or abstain from Peter's help.
    D. You can unlock Peter's account by using the command fwm unlock_admin -u Peter on the Security Gateway.

  • Question 204:

    You have selected the event Port Scan from Internal Network in SmartEvent, to detect an event when 30 port scans have occurred within 60 seconds. You also want to detect two port scans from a host within 10 seconds of each other. How would you accomplish this?

    A. Define the two port-scan detections as an exception.
    B. You cannot set SmartEvent to detect two port scans from a host within 10 seconds of each other.
    C. Select the two port-scan detections as a sub-event.
    D. Select the two port-scan detections as a new event.

  • Question 205:

    Which of the following describes how Threat Extraction functions?

    A. Detect threats and provides a detailed report of discovered threats
    B. Proactively detects threats
    C. Delivers file with original content
    D. Delivers PDF versions of original files with active content removed

  • Question 206:

    The fwd process on the Security Gateway sends logs to the fwd process on the Management Server via which 2 processes?

    A. fwd via cpm
    B. fwm via fwd
    C. cpm via cpd
    D. fwd via cpd

  • Question 207:

    Session unique identifiers are passed to the web api using which http header option?

    A. X-chkp-sid
    B. Accept-Charset
    C. Proxy-Authorization
    D. Application

  • Question 208:

    What is the purpose of the pre-defined exclusions included with SmartEvent R80?

    A. To allow SmartEvent R80 to function properly with all other R71 devices.
    B. To avoid incorrect event generation by the default IPS event definition; a scenario that may occur in deployments that include Security Gateways of versions prior to R71.
    C. As a base for starting and building exclusions.
    D. To give samples of how to write your own exclusion.

  • Question 209:

    Where does the security administrator activate Identity Awareness within SmartDashboard?

    A. Gateway Object > General Properties
    B. Security Management Server > Identity Awareness
    C. Policy > Global Properties > Identity Awareness
    D. LDAP Server Object > General Properties

  • Question 210:

    Many companies have defined more than one administrator. To increase security, only one administrator should be able to install a Rule Base on a specific Firewall. How do you configure this?

    A. Define a permission profile in SmartDashboard with read/write privileges, but restrict it to all other firewalls by placing them in the Policy Targets field. Then, an administrator with this permission profile cannot install a policy on any Firewall not listed here.
    B. Put the one administrator in an Administrator group and configure this group in the specific Firewall object in Advanced > Permission to Install.
    C. In the object General Properties representing the specific Firewall, go to the Software Blades product list and select Firewall. Right-click in the menu, select Administrator to Install to define only this administrator.
    D. Right-click on the object representing the specific administrator, and select that Firewall in Policy Targets.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CheckPoint exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 156-915.80 exam preparations and CheckPoint certification application, do not hesitate to visit our Vcedump.com to find your solutions here.