CheckPoint 156-215.81 Check Point Certified Security Administrator R81.20 Exam Practice Test

Answer : B

The command cplic print is used to verify license installation. It displays the installed licenses and their expiration dates . Reference: [Check Point R81 Command Line Interface Reference Guide],Check Point :: Pearson VUE

Answer : C

Endpoint Identity Agent and Browser-Based Authentication are the identity sources that provide the highest level of security for sensitive servers, as they require user authentication and can enforce granular access rules based on user identity.AD Query, Terminal Servers Endpoint Identity Agent, and RADIUS and Account Logon are less secure, as they rely on passive methods of identity acquisition or do not support identity-based access control12.

Answer : B

Accept all encrypted traffic is the option that will match a connection regardless of its association with a VPN community2.This option allows encrypted traffic from any VPN peer, even if it is not defined in a VPN community2. Reference:Site to Site VPN in R80.x - Tutorial for Beginners

Answer : B

The answer is B because AES-CBC-256 is not a supported encryption algorithm for IPsec Security Associations (Phase 2) in R81.The supported encryption algorithms are AES-GCM-128, AES-GCM-256, AES-CBC-128, 3DES, and NULL3Reference:Check Point R81 VPN Administration Guide

Answer : A

Back up and restores can be accomplished throughSmartConsole, WebUI, or CLI12.These are the methods to perform system backup and restore, which save and restore the Gaia OS configuration and the Security Management Server database1.WebUI, CLI, or SmartUpdate are not valid methods, as SmartUpdate is used to install software packages and patches, not to back up or restore the system3.CLI, SmartUpdate, or SmartBackup are not valid methods, as SmartBackup is a feature of SmartProvisioning that allows backing up and restoring the configuration of Security Gateways and VSX clusters4.SmartUpdate, SmartBackup, or SmartConsole are not valid methods, as SmartConsole is used to configure and manage the Security Policy, not to back up or restore the system5.

Answer : B

The Threat Prevention policy is a unified policy that manages three software blades: IPS, Anti-Virus, and Threat Emulation7. The Threat Prevention policy enables you to configure settings and actions for detecting and preventing various types of threats, such as malware, exploits, botnets, etc.Application Control and URL Filtering are not part of the Threat Prevention policy, but they are part of a separate policy that controls access to applications and websites based on categories, users, groups, and machines

Answer : B

The Threat Prevention Software Blade that provides protection from malicious software that can infect your network computers isAnti-Virus. Anti-Virus is a software blade that scans files and traffic for viruses, worms, trojans, spyware, and other malware. Anti-Virus can block or clean infected files and prevent malware outbreaks. IPS is a software blade that provides protection from network attacks and exploits. Anti-Malware is not a software blade, but rather a term that refers to any software that can detect and remove malware. Content Awareness is a software blade that provides visibility and control over data that enters or leaves the network based on file types, data types, and keywords.