Get 170 Checkpoint 156-315.81 Questions - Checkpoint Certified Security Expert R81

Elevate your cybersecurity expertise with this comprehensive collection of exam questions and detailed answers, meticulously curated to ensure you're fully prepared for success. Whether you're a seasoned security professional or aspiring to advance your career in the field, this guide is your go-to companion for acing the Checkpoint 156-315.81

Question # 1 Topic 1

Identity Awareness allows easy configuration for network access and auditing based on what three items?

A. Client machine IP address.

B. Network location, the identity of a user and the identity of a machine.

C. Log server IP address.

D. Gateway proxy IP address.

Correct Answer: B

Question # 2 Topic 1

What are the two types of tests when using the Compliance blade?

A. Policy-based tests and Global properties

B. Global tests and Object-based tests

C. Access Control policy analysis and Threat Prevention policy analysis

D. Tests conducted based on the IoC XML file and analysis of SOLR documents

Correct Answer: B

Question # 3 Topic 1

What are the services used for Cluster Synchronization?

A. 256/TCP for Full Sync and 8116/UDP for Delta Sync

B. 8116/UDP for Full Sync and Delta Sync

C. TCP/256 for Full Sync and Delta Sync

D. No service needed when using Broadcast Mode

Correct Answer: A

Question # 4 Topic 1

Can multiple administrators connect to a Security Management Server at the same time?

A. Yes, all administrators can modify a network object at the same time.

B. No, only one can be connected.

C. Yes, every administrator has their own username, and works in a session that is independent of other administrators.

D. Yes, but only one has the right to write.

Correct Answer: C

Question # 5 Topic 1

Sticky Decision Function (SDF) is required to prevent which of the following? Assume you set up an Active-Active cluster.

A. Asymmetric routing

B. Anti-Spoofing

C. Failovers

D. Symmetric routing

Correct Answer: A

Question # 6 Topic 1

What is required for a site-to-site VPN tunnel that does not use certificates?

A. Pre-Shared Secret

B. RSA Token

C. Unique Passwords

D. SecureID

Correct Answer: A

Question # 7 Topic 1

Which statements below are CORRECT regarding Threat Prevention profiles in SmartConsole?

A. You can assign only one profile per gateway and a profile can be assigned to one or more rules.

B. You can assign only one profile per gateway and a profile can be assigned to one rule Only.

C. You can assign multiple profiles per gateway and a profile can be assigned to one rule only.

D. You can assign multiple profiles per gateway and a profile can be assigned to one or more rules.

Correct Answer: D

Question # 8 Topic 1

Please choose the path to monitor the compliance status of the Check Point Security Management.

A. Logs Monitor -> New Tab -> Open compliance View

B. Gateways Servers -> Compliance View

C. Security Policies -> New Tab -> Compliance View

D. Compliance blade not available under R80.10

Correct Answer: A

Question # 9 Topic 1

Which one of the following is true about Threat Extraction?

A. Delivers file only if no threats found

B. Can take up to 3 minutes to complete

C. Works on all MS Office, Executables, and PDF files

D. Always delivers a file to user

Correct Answer: D

Question #10  Topic 1

For Management High Availability, which of the following is NOT a valid synchronization status?

A. Lagging

B. Collision

C. Never been synchronized

D. Down

Correct Answer: C