Actualtests offers free demo for 156 215.77 pdf exam. "Check Point Certified Security Administrator – GAiA", also known as 156 215.77 pdf exam, is a Check Point Certification. This set of posts, Passing the Check Point ccsa 156 215.77 exam, will help you answer those questions. The ccsa 156 215.77 Questions & Answers covers all the knowledge points of the real exam. 100% real Check Point exam 156 215.77 exams and revised by experts!
♥♥ 2021 NEW RECOMMEND ♥♥
Free VCE & PDF File for Check Point 156-215.77 Real Exam (Full Version!)
★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions
Free Instant Download NEW 156-215.77 Exam Dumps (PDF & VCE):
Available on:
http://www.surepassexam.com/156-215.77-exam-dumps.html
Q171. - (Topic 1)
You want to generate a cpinfo file via CLI on a system running GAiA. This will take about 40 minutes since the log files are also needed. What action do you need to take regarding timeout?
A. Log in as Administrator, set the timeout to one hour with the command idle 60 and start cpinfo.
B. Log in as the default user expert and start cpinfo.
C. No action is needed because cpshell has a timeout of one hour by default.
D. Log in as admin, switch to expert mode, set the timeout to one hour with the command, idle 60, then start cpinfo.
Answer: A
Q172. - (Topic 3)
Which of the following items should be configured for the Security Management Server to authenticate via LDAP?
A. Windows logon password
B. Active Directory Server object
C. WMI object
D. Check Point Password
Answer: B
Q173. - (Topic 3)
Your users are defined in a Windows 2008 R2 Active Directory server. You must add LDAP users to a Client Authentication rule. Which kind of user group do you need in the Client Authentication rule in R77?
A. All Users
B. External-user group
C. A group with a generic user
D. LDAP group
Answer: D
Q174. - (Topic 3)
MegaCorp's security infrastructure separates Security Gateways geographically. You must request a central license for one remote Security Gateway. How do you apply the license?
A. Using each of the Gateways' IP addresses, and applying the licenses on the Security Management Server with the command cprlic put.
B. Using the remote Gateway's IP address, and applying the license locally with the command cplic put.
C. Using your Security Management Server's IP address, and attaching the license to the remote Gateway via SmartUpdate.
D. Using the remote Gateway's IP address, and attaching the license to the remote Gateway via SmartUpdate.
Answer: C
Q175. - (Topic 3)
A _______ rule is used to prevent all traffic going to the R77 Security Gateway.
A. IPS
B. Cleanup
C. Reject
D. Stealth
Answer: D
Q176. - (Topic 3)
Sally has a Hot Fix Accumulator (HFA) she wants to install on her Security Gateway which operates with GAiA, but she cannot SCP the HFA to the system. She can SSH into the Security Gateway, but she has never been able to SCP files to it. What would be the most likely reason she cannot do so?
A. She needs to edit /etc/scpusers and add the Standard Mode account.
B. She needs to run sysconfig and restart the SSH process.
C. She needs to run cpconfig to enable the ability to SCP files.
D. She needs to edit /etc/SSHd/SSHd_config and add the Standard Mode account.
Answer: A
Q177. - (Topic 1)
During which step in the installation process is it necessary to note the fingerprint for first-time verification?
A. When configuring the Security Gateway object in SmartDashboard
B. When configuring the Security Management Server using cpconfig
C. When establishing SIC between the Security Management Server and the Gateway
D. When configuring the Gateway in the WebUI
Answer: B
Q178. - (Topic 3)
Your company enforces a strict change control policy. Which of the following would be MOST effective for quickly dropping an attacker's specific active connection?
A. Intrusion Detection System (IDS) Policy install
B. SAM - Suspicious Activity Rules feature of SmartView Monitor
C. Block Intruder feature of SmartView Tracker
D. Change the Rule Base and install the Policy to all Security Gateways
Answer: C
Q179. - (Topic 3)
Where do you verify that SmartDirectory is enabled?
A. Verify that Global Properties > SmartDirectory (LDAP) > Use SmartDirectory (LDAP) for Security Gateways is checked
B. Verify that Global Properties > Authentication > Use SmartDirectory (LDAP) for Security Gateways is checked
C. Verify that Security Gateway > General Properties > Authentication > Use SmartDirectory (LDAP) for Security Gateways is checked
D. Verify that Security Gateway > General Properties > SmartDirectory (LDAP) > Use SmartDirectory (LDAP) for Security Gateways is checked
Answer: A
Q180. - (Topic 1)
A digital signature:
A. Provides a secure key exchange mechanism over the Internet.
B. Automatically exchanges shared keys.
C. Guarantees the authenticity and integrity of a message.
D. Decrypts data to its original form.
Answer: C
