Super ways to checkpoint ccsa exam dumps

Cause all that matters here is passing the Check Point 156-215.77 exam. Cause all that you need is a high score of 156-215.77 Check Point Certified Security Administrator – GAiA exam. The only one thing you need to do is downloading Actualtests 156-215.77 exam study guides now. We will not let you down with our money-back guarantee.

2016 Dec ccsa 156-215.77:

Q101. - (Topic 1) 

The third-shift Administrator was updating Security Management Server access settings in Global Properties and testing. He managed to lock himself out of his account. How can you unlock this account? 

A. Delete the file admin.lock in the Security Management Server directory $FWDIR/tmp/. 

B. Type fwm lock_admin -u <account name> from the Security Management Server command line. 

C. Type fwm unlock_admin -u from the Security Gateway command line. 

D. Type fwm unlock_admin from the Security Management Server command line. 

Answer:


Q102. - (Topic 3) 

What command with appropriate switches would you use to test Identity Awareness connectivity? 

A. test_ad 

B. test_ldap 

C. test_ad_connectivity 

D. test_ldap_connectivity 

Answer:


Q103. - (Topic 3) 

For which service is it NOT possible to configure user authentication? 

A. FTP 

B. Telnet 

C. HTTPS 

D. SSH 

Answer:


Q104. - (Topic 3) 

If a Security Gateway enforces three protections, LDAP Injection, Malicious Code Protector, and Header Rejection, which Check Point license is required in SmartUpdate? 

A. SmartEvent Intro 

B. IPS 

C. SSL: VPN 

D. Data Loss Prevention 

Answer:


Q105. - (Topic 3) 

When using vpn tu, which option must you choose if you only want to clear phase 2 for a specific IP (gateway)? 

A. (8) Delete all IPsec+IKE SAs for a given User (Client) 

B. (5) Delete all IPsec SAs for a given peer (GW) 

C. (6) Delete all IPsec SAs for a given User (Client) 

D. (7) Delete all IPsec+IKE SAs for a given peer (GW) 

Answer:


Refresh 156-215.77 pdf:

Q106. - (Topic 3) 

You believe Phase 2 negotiations are failing while you are attempting to configure a site-to-site VPN with one of your firm’s business partners. Which SmartConsole application should you use to confirm your suspicions? 

A. SmartDashboard 

B. SmartUpdate 

C. SmartView Status 

D. SmartView Tracker 

Answer:


Q107. - (Topic 3) 

Your company has two headquarters, one in London, and one in New York. Each office includes several branch offices. The branch offices need to communicate with the headquarters in their country, not with each other, and only the headquarters need to communicate directly. What is the BEST configuration for establishing VPN Communities for this company? VPN Communities comprised of: 

A. Two star and one mesh Community: One star Community is set up for each site, with headquarters as the Community center, and its branches as satellites. The mesh Community includes only New York and London Gateways. 

B. Three mesh Communities: One for London headquarters and its branches, one for New York headquarters and its branches, and one for London and New York headquarters. 

C. One star Community with the option to mesh the center of the star: New York and London Gateways added to the center of the star with the mesh center Gateways option checked; all London branch offices defined in one satellite window, but, all New York branch offices defined in another satellite window. 

D. Two mesh and one star Community: One mesh Community is set up for each of the headquarters and its branch offices. The star Community is configured with London as the center of the Community and New York is the satellite. 

Answer:


Q108. - (Topic 3) 

You install and deploy GAiA with default settings. You allow Visitor Mode in the Gateway object’s Remote Access properties and install policy. What additional steps are required for this to function correctly? 

A. You need to start SSL Network Extender first, then use Visitor Mode. 

B. Set Visitor Mode in Policy > Global Properties > Remote-Access > VPN - Advanced. 

C. Office mode is not configured. 

D. The WebUI on GAiA runs on port 443 (HTTPS). When you configure Visitor Mode it cannot bind to default port 443, because it's used by another program (WebUI). With multi-port no additional changes are necessary. 

Answer:


Q109. - (Topic 1) 

You installed Security Management Server on a computer using GAiA in the MegaCorp home office. You use IP address 10.1.1.1. You also installed the Security Gateway on a second SecurePlatform computer, which you plan to ship to another Administrator at a MegaCorp hub office. What is the correct order for pushing SIC certificates to the Gateway before shipping it? 

A. 2, 1, 3, 4, 5 

B. 2, 3, 4, 5, 1 

C. 1, 3, 2, 4, 5 

D. 2, 3, 4, 1, 5 

Answer:


Q110. - (Topic 1) 

The INSPECT engine inserts itself into the kernel between which two OSI model layers? 

A. Physical and Data 

B. Session and Transport 

C. Data link and Network 

D. Presentation and Application 

Answer:



see more 156-215.77 dumps