All About Virtual 156-215.77 Testing Material
It is more faster and easier to pass the Check-Point 156-215.77 exam by using Breathing Check-Point Check Point Certified Security Administrator – GAiA questuins and answers. Immediate access to the Leading 156-215.77 Exam and find the same core area 156-215.77 questions with professionally verified answers, then PASS your exam with a high score now.
Free 156-215.77 Demo Online For Check-Point Certifitcation:
NEW QUESTION 1
When configuring LDAP authentication, which of the following items should be configured for the Security Management Server?
- A. Login Distinguished Name and password
- B. Windows logon password
- C. Check Point Password
- D. WMI object
Answer: A
NEW QUESTION 2
Suppose the Security Gateway hard drive fails and you are forced to rebuild it. You have a snapshot file stored to a TFTP server and backups of your Security Management Server.
What is the correct procedure for rebuilding the Gateway quickly?
- A. Reinstall the base operating system (i.e., GAiA). Configure the Gateway interface so that the Gateway can communicate with the TFTP serve
- B. Revert to the stored snapshot image, and install the Security Policy.
- C. Run the command revert to restore the snapshot, establish SIC, and install the Policy.
- D. Run the command revert to restore the snapsho
- E. Reinstall any necessary Check Point product
- F. Establish SIC and install the Policy.
- G. Reinstall the base operating system (i.e., GAia). Configure the Gateway interface so that the Gateway can communicate with the TFTP serve
- H. Reinstall any necessary Check Point products and previously applied hotfixe
- I. Revert to the stored snapshot image, and install the Policy.
Answer: A
NEW QUESTION 3
Is it possible to see user activity in SmartView Tracker?
- A. Yes, seeing user activity is enabled when using the Identity Awareness blade.
- B. No, a Check Point Gateway can only see IP addresses.
- C. Yes, but you have to enable the option: See user information in SmartView Tracker.
- D. Yes, but you need to use the SPLAT operating system.
Answer: A
NEW QUESTION 4
Which SmartConsole component can Administrators use to track changes to the Rule Base?
- A. WebUI
- B. SmartView Tracker
- C. SmartView Monitor
- D. SmartReporter
Answer: B
NEW QUESTION 5
If you are experiencing LDAP issues, which of the following should you check?
- A. Connectivity between the R77 Gateway and LDAP server
- B. Secure Internal Communications (SIC)
- C. Overlapping VPN Domains
- D. Domain name resolution
Answer: A
NEW QUESTION 6
You review this Security Policy because Rule 4 is inhibited. Which Rule is responsible? Exhibit:
- A. No rule inhibits Rule 4.
- B. Rule 1
- C. Rule 2
- D. Rule 3
Answer: C
NEW QUESTION 7
You are conducting a security audit. While reviewing configuration files and logs, you notice logs accepting POP3 traffic, but you do not see a rule allowing POP3 traffic in the Rule Base. Which of the following is the most likely cause?
- A. The POP3 rule is disabled.
- B. POP3 is accepted in Global Properties.
- C. The POP3 rule is hidden.
- D. POP3 is one of 3 services (POP3, IMAP, and SMTP) accepted by the default mail object in R77.
Answer: C
NEW QUESTION 8
If a Security Gateway enforces three protections, LDAP Injection, Malicious Code Protector, and Header Rejection, which Check Point license is required in SmartUpdate?
- A. IPS
- B. SSL: VPN
- C. SmartEvent Intro
- D. Data Loss Prevention
Answer: A
NEW QUESTION 9
Which command displays the installed Security Gateway kernel version?
- A. fw printver
- B. fw ver
- C. fw ver -k
- D. cpstat -gw
Answer: C
NEW QUESTION 10
How many packets does the IKE exchange use for Phase 1 Aggressive Mode?
- A. 12
- B. 6
- C. 3
- D. 1
Answer: C
NEW QUESTION 11
You have configured SNX on the Security Gateway. The client connects to the Security Gateway and the user enters the authentication credentials. What must happen after authentication that allows the client to connect to the Security Gateway’s VPN domain?
- A. SNX modifies the routing table to forward VPN traffic to the Security Gateway.
- B. An office mode address must be obtained by the client.
- C. The SNX client application must be installed on the client.
- D. Active-X must be allowed on the client.
Answer: A
NEW QUESTION 12
Which of the following allows administrators to allow or deny traffic to or from a specific network based on the user’s credentials?
- A. Access Policy
- B. Access Role
- C. Access Rule
- D. Access Certificate
Answer: B
NEW QUESTION 13
You are about to test some rule and object changes suggested in an R77 news group.
Which backup solution should you use to ensure the easiest restoration of your Security Policy to its previous configuration after testing the changes?
- A. Manual copies of the directory $FWDIR/conf
- B. upgrade_export command
- C. Database Revision Control
- D. GAiA backup utilities
Answer: C
NEW QUESTION 14
The Tokyo Security Management Server Administrator cannot connect from his workstation in Osaka.
Which of the following lists the BEST sequence of steps to troubleshoot this issue?
- A. Check for matching OS and product versions of the Security Management Server and the clien
- B. Then, ping the Gateways to verify connectivit
- C. If successful, scan the log filesfor any denied management packets.
- D. Verify basic network connectivity to the local Gateway, service provider, remote Gateway, remote network and target machin
- E. Then, test for firewall rules that deny management access to the targe
- F. If successful, verify that pcosaka is a valid client IP address.
- G. Check the allowed clients and users on the Security Management Serve
- H. If pcosaka and your user account are valid, check for network problem
- I. If there are no network related issues, this is likely to be a problem with the server itsel
- J. Check for any patches and upgrade
- K. If still unsuccessful, open a case with Technical Support.
- L. Call Tokyo to check if they can ping the Security Management Server locall
- M. If so, login to sgtokyo, verify management connectivity and Rule Bas
- N. If this looks okay, ask your provider if they have some firewall rules that filters out your management traffic.
Answer: B
NEW QUESTION 15
What happens when you select File > Export from the SmartView Tracker menu?
- A. Current logs are exported to a new *.log file.
- B. Exported log entries are not viewable in SmartView Tracker.
- C. Logs in fw.log are exported to a file that can be opened by Microsoft Excel.
- D. Exported log entries are deleted from fw.log.
Answer: C
NEW QUESTION 16
Peter is your new Security Administrator. On his first working day, he is very nervous and enters the wrong password three times. His account is locked.
What can be done to unlock Peter’s account? Give the BEST answer.
- A. You can unlock Peter’s account by using the command fwm lock_admin -u Peter on the Security Management Server.
- B. You can unlock Peter’s account by using the command fwm unlock_admin -u Peter on the Security Management Server
- C. It is not possible to unlock Peter’s accoun
- D. You have to install the firewall once again or abstain from Peter’s help.
- E. You can unlock Peter’s account by using the command fwm unlock_admin -u Peter on the Security Gateway.
Answer: A
NEW QUESTION 17
Anti-Spoofing is typically set up on which object type?
- A. Security Gateway
- B. Host
- C. Security Management object
- D. Network
Answer: A
NEW QUESTION 18
Where can you find the Check Point’s SNMP MIB file?
- A. $CPDIR/lib/snmp/chkpt.mib
- B. $FWDIR/conf/snmp.mib
- C. It is obtained only by request from the TAC.
- D. There is no specific MIB file for Check Point products.
Answer: A
NEW QUESTION 19
The Captive Portal tool:
- A. Acquires identities from unidentified users.
- B. Is only used for guest user authentication.
- C. Allows access to users already identified.
- D. Is deployed from the Identity Awareness page in the Global Properties settings.
Answer: A
NEW QUESTION 20
......
Thanks for reading the newest 156-215.77 exam dumps! We recommend you to try the PREMIUM Dumps-files.com 156-215.77 dumps in VCE and PDF here: https://www.dumps-files.com/files/156-215.77/ (388 Q&As Dumps)