Top Precise 156-915.80 preparation Tips!

New Questions 1

Check Point APIs allow system engineers and developers to make changes to their organizationu2021s security policy with CLI tools and Web Services for all of the following except?

A. Create new dashboards to manage 3rd party task

B. Create products that use and enhance 3rd party solutions.

C. Execute automated scripts to perform common tasks.

D. Create products that use and enhance the Check Point Solution.

New Questions 2

Complete this statement from the options provided. Using Captive Portal, unidentified users may be either; blocked, allowed to enter required credentials, or required to download the .

A. Identity Awareness Agent

B. Full Endpoint Client

C. ICA Certificate

D. SecureClient

New Questions 3

When do modifications to the Event Policy take effect?

A. As soon as the Policy Tab window is closed.

B. When saved on the SmartEvent Server and installed to the Correlation Units.

C. When saved on the Correlation Units, and pushed as a policy.

D. When saved on the SmartEvent Client, and installed on the SmartEvent Server.

New Questions 4

Which directory below contains log files?

A. /opt/CPSmartlog-R80/log

B. /opt/CPshrd-R80/log

C. /opt/CPsuite-R80/fw1/log

D. /opt/CPsuite-R80/log

New Questions 5

The technical-support department has a requirement to access an intranet server. When configuring a User Authentication rule to achieve this, which of the following should you remember?

A. You can only use the rule for Telnet, FTP, SMTP, and rlogin services.

B. The Security Gateway first checks if there is any rule that does not require authentication for this type of connection before invoking the Authentication Security Server.

C. Once a user is first authenticated, the user will not be prompted for authentication again until logging

out.

D. You can limit the authentication attempts in the User Propertiesu2021 Authentication tab.

New Questions 6

Many companies have defined more than one administrator. To increase security, only one administrator should be able to install a Rule Base on a specific Firewall. How do you configure this?

A. Define a permission profile in SmartDashboard with read/write privileges, but restrict it to all other firewalls by placing them in the Policy Targets field. Then, an administrator with this permission profile cannot install a policy on any Firewall not listed here.

B. Put the one administrator in an Administrator group and configure this group in the specific Firewall

object in Advanced > Permission to Install.

C. In the object General Properties representing the specific Firewall, go to the Software Blades product list and select Firewall. Right-click in the menu, select Administrator to Install to define only this administrator.

D. Right-click on the object representing the specific administrator, and select that Firewall in Policy Targets.

New Questions 7

Which of the following is NOT defined by an Access Role object?

A. Source Network

B. Source Machine

C. Source User

D. Source Server

New Questions 8

Type the full cphaprob command and syntax that will show full synchronization status.

New Questions 9

Fill in the blank with a numeric value. The default port number for Secure Sockets Layer (SSL) connections with the LDAP Server is

New Questions 10

You are a Security Administrator who has installed Security Gateway R80 on your network. You need to allow a specific IP address range for a partner site to access your intranet Web server. To limit the partneru2021s access for HTTP and FTP only, you did the following:

1) Created manual Static NAT rules for the Web server.

2) Cleared the following settings in the Global Properties > Network Address Translation screen:

- Allow bi-directional NAT

- Translate destination on client side

Do the above settings limit the partneru2021s access?

A. Yes. This will ensure that traffic only matches the specific rule configured for this traffic, and that the Gateway translates the traffic after accepting the packet.

B. No. The first setting is not applicable. The second setting will reduce performance.

C. Yes. Both of these settings are only applicable to automatic NAT rules.

D. No. The first setting is only applicable to automatic NAT rules. The second setting will force translation by the kernel on the interface nearest to the client.