CheckPoint Check Point Certified Security Administrator R81.20 156-215.81 Exam Practice Test

Answer : D

Secure Internal Communication (SIC) is handled by the CPD process3. CPD is the Check Point Daemon that runs on all Check Point modules and handles internal licensing and SIC operations. SIC is a mechanism that ensures secure communication between Check Point components using certificates and encryption. Reference:Check Point R81 Security Management Administration Guide

Answer : A

SmartConsole provides a consolidated solution for everything that is necessary for the security of an organization, such as Security Policy Management and Log Analysis. Security Policy Management is the process of defining and enforcing rules that control the access and protection of network resources. Log Analysis is the process of collecting, analyzing, and reporting on log data that is generated by network devices and applications. SmartConsole is a unified graphical user interface that allows administrators to manage multiple security functions from a single console. The other options are not part of SmartConsole, but rather separate software blades or features that can be integrated with SmartConsole.

Answer : C

A Distributed Deployment is when the Security Management Server and Security Gateway are installed on separate machines. In this setup, the Security Gateway communicates its status to the Security Management Server, which resides at a different IP address.

Option A (Incorrect): 'Targeted' is not an official Check Point deployment mode.

Option B (Incorrect): In Bridge Mode, the Security Gateway acts as a Layer 2 bridge and does not communicate its status to another IP.

Option D (Incorrect): In Standalone Mode, the Security Gateway and Management Server are on the same machine, meaning it does not communicate status to a different IP.

Thus, the correct answer is C. Distributed.

Check Point documentation confirms that in Distributed Deployments, the Security Gateway communicates with the Management Server, which is located at a different IP address.

Answer : B

Certificate is the most secure means of authentication among the given options2. A certificate is a digital document that contains information about the identity of a user or a device, and is signed by a trusted authority. A certificate can be used to prove the identity of a user or a device without revealing any sensitive information, such as passwords or tokens. Password, token, and pre-shared secret are less secure means of authentication because they can be easily compromised, stolen, or guessed by attackers. Reference:Secure User Authentication Methods - freeCodeCamp.org,What is the Most Secure Authentication Method for Your Organization ...

Answer : A

The commandshow cluster stateis used to monitor cluster members in CLI. It displays information such as the cluster mode, the cluster members, their status, their priority, and their interfaces. Reference: [ClusterXL Administration Guide], [Check Point CLI Reference Card]

Answer : B

The Transport layer of the TCP/IP model is responsible for managing the flow of data between two hosts to ensure that the packets are correctly assembled and delivered to the target application. It also provides error detection and correction, flow control, and multiplexing. The Transport layer uses protocols such as TCP and UDP.

Answer : A

The answer is A because changing the Security Gateway IP-address requires re-establishing the trust with the Security Management Server by initializing the Secure Internal Communication (SIC). Changing the Security Gateway name in command line or changing the Security Management Server name or IP-address in SmartConsole does not require re-establishing the trust, but it may require updating the topology and pushing the policy. Reference: [Check Point R81 Security Management Administration Guide], [Check Point R81 Security Gateway Administration Guide]