Question No. 1

The back-end database for Check Point Management uses:

APostgreSQL

BMongoDB

CMySQL

DDBMS

Show Answer

Correct Answer: B

Check Point Management uses MongoDB as its back-end database. MongoDB is a NoSQL database that offers high performance, high availability, and easy scalability, which are essential for managing the complex and dynamic nature of network security configurations and logs.

Question No. 2

Which of the following is NOT a method used by Identity Awareness for acquiring identity?

ARemote Access

BActive Directory Query

CCloud IdP (Identity Provider)

DRADIUS

Show Answer

Correct Answer: A

Identity Awareness uses various methods to acquire identity information. These methods include:

Active Directory Query: Identity Awareness queries Active Directory servers to retrieve user and group information.

Cloud IdP (Identity Provider): Identity Awareness integrates with cloud identity providers such as Microsoft Azure AD, Okta, and Google Workspace.

RADIUS: Identity Awareness can use RADIUS servers to authenticate users.

However,Remote Accessis not a method used by Identity Awareness for acquiring identity. Remote Access typically refers to VPN connections, and while Identity Awareness can be used in conjunction with VPNs, it does not directly acquire identity information from remote access connections.

Check Point Troubleshooting Expert - R81 (CCTE) Reference Materials guides and documents.

Check Point Certified Troubleshooting Expert R81.20 - CCTE

Check Point CCTE Certification Sample Questions and Practice Exam

Question No. 3

Identity Awareness allows easy configuration for network access and auditing based on what three items?

AClient machine IP address.

BNetwork location, the identity of a user and the identity of a machine

CLog server IP address.

DGateway proxy IP address.
Identity Awareness maps users and computer identities, enabling enforcement of Access Control policy rules and auditing data based on identity.It is an easy-to-deploy and scalable solution that works for both Active Directory and non-Active Directory based networks, including employees and guest users1.By considering network location, user identity, and machine identity, organizations can control access between different segments in the network using an identity-based policy2.

Show Answer

Correct Answer: B

Check Point Troubleshooting Expert - R81 (CCTE) Reference Materials

Check Point Certified Troubleshooting Expert R81.20 - CCTE

Check Point CCTE Certification Sample Questions and Practice Exam

Question No. 4

Fill in the blank: An identity server uses a _________________ to trust a Terminal Server Identity Agent.

AShared secret

BOne-time password

CCertificate

DToken
When configuring Terminal Servers with Identity Awareness, you must configure the same password as a shared secret in both the Terminal Servers Identity Agent on the application server that hosts the Terminal/Citrix services and on the Identity Awareness Gateway.This shared secret enables secure communication and allows the Security Gateway to trust the application server with the Terminal Servers functionality1.

Show Answer

Correct Answer: A

Check Point Software - Configuring Terminal Servers

Check Point Identity Awareness Clients Admin Guide

Check Point Troubleshooting Expert - R81 (CCTE) Reference Materials

Check Point Certified Troubleshooting Expert R81.20 - CCTE

Check Point CCTE Certification Sample Questions and Practice Exam

Question No. 5

Fill in the blanks: Default port numbers for an LDAP server is ________________ for standard connections and SSL connections.

A443,389

B636; 8080

C290; 3389

D389; 636
LDAP (Lightweight Directory Access Protocol) operates over different ports, with each serving a specific purpose. Port389is the default port for unsecured LDAP connections or LDAP with StartTLS, which upgrades the connection to use TLS (Transport Layer Security) for encryption.On the other hand, port636is used for LDAP over SSL/TLS, often referred to as LDAPS (LDAP Secure), where communication is encrypted from the start of the connection1.

Show Answer

Correct Answer: D

LDAP Ports Explained: Configuring Standard, StartTLS, and LDAPS Connections

Red Hat Directory Server documentation on changing LDAP and LDAPS port numbers

Oracle documentation on Directory Server and Directory Proxy Server LDAP and LDAPS Port Numbers

ServerFault discussion on LDAP server authentication ports

Free CheckPoint 156-315.81 Exam Actual Questions

The questions for 156-315.81 were last updated On May 2, 2024