With the help of Examcollection 156-215.77 puts, you can aquire a great end result basically that make you move Check Point examination. In addition, in the event you been unsuccessful within the 156-215.77 test for the first time of using the goods, just about all cash you spend will probably be refund. You simply need to deliver your 156-215.77 report records as the pdf to all of us. Following verifying your details, we are going to refund the amount of money as well as send it back for your account at the earliest opportunity.
2021 Aug 156-215.77 practice exam
Q131. - (Topic 1)
A digital signature:
A. Provides a secure key exchange mechanism over the Internet.
B. Automatically exchanges shared keys.
C. Guarantees the authenticity and integrity of a message.
D. Decrypts data to its original form.
Q132. - (Topic 3)
You review this Security Policy because Rule 4 is inhibited. Which Rule is responsible? Exhibit:
A. No rule inhibits Rule 4.
B. Rule 1
C. Rule 2
D. Rule 3
Q133. - (Topic 3)
Which of the following allows administrators to allow or deny traffic to or from a specific network based on the user's credentials?
A. Access Role
B. Access Rule
C. Access Policy
D. Access Certificate
374. - (Topic 3)
In which Rule Base can you implement a configured Access Role?
B. Mobile Access
Q134. - (Topic 2)
Where can an administrator configure the notification action in the event of a policy install time change?
A. SmartDashboard > Policy Package Manager
B. SmartView Monitor > Gateway Status > System Information > Thresholds
C. SmartDashboard > Security Gateway Object > Advanced Properties Tab
D. SmartView Monitor > Gateways > Thresholds Settings
Q135. - (Topic 1)
The third-shift Administrator was updating Security Management Server access settings in Global Properties and testing. He managed to lock himself out of his account. How can you unlock this account?
A. Delete the file admin.lock in the Security Management Server directory $FWDIR/tmp/.
B. Type fwm lock_admin -u <account name> from the Security Management Server command line.
C. Type fwm unlock_admin -u from the Security Gateway command line.
D. Type fwm unlock_admin from the Security Management Server command line.
Up to date 156-215.77 exam topics:
Q136. - (Topic 3)
Choose the BEST sequence for configuring user management in SmartDashboard, using an LDAP server.
A. Configure a server object for the LDAP Account Unit, and create an LDAP resource object.
B. Enable User Directory in Global Properties, configure a host-node object for the LDAP server, and configure a server object for the LDAP Account Unit.
C. Configure a workstation object for the LDAP server, configure a server object for the LDAP Account Unit, and enable LDAP in Global Properties.
D. Configure a server object for the LDAP Account Unit, enable LDAP in Global Properties, and create an LDAP resource object.
Q137. - (Topic 3)
When attempting to connect with SecureClient Mobile you get the following error message:
The certificate provided is invalid. Please provide the username and password.
What is the probable cause of the error?
A. Your user configuration does not have an office mode IP address so the connection failed.
B. There is no connection to the server, and the client disconnected.
C. Your certificate is invalid.
D. Your user credentials are invalid.
Q138. - (Topic 2)
Which of the following can be found in cpinfo from an enforcement point?
A. Policy file information specific to this enforcement point
B. The complete file objects_5_0.c
C. VPN keys for all established connections to all enforcement points
D. Everything NOT contained in the file r2info
106. - (Topic 2)
What is the default setting when you use NAT?
A. Source Translated on Client side
B. Source Translated on both sides
C. Destination Translated on Client side
D. Destination Translated on Server side
Q139. - (Topic 1)
Which of the following commands can provide the most complete restoration of a R77 configuration?
A. cpinfo -recover
B. fwm dbimport -p <export file>
Q140. - (Topic 2)
Your main internal network 10.10.10.0/24 allows all traffic to the Internet using Hide NAT. You also have a small network 10.10.20.0/24 behind the internal router. You want to configure the kernel to translate the source address only when network 10.10.20.0 tries to access the Internet for HTTP, SMTP, and FTP services. Which of the following configurations will allow this network to access the Internet?
A. Configure Automatic Static NAT on network 10.10.20.0/24.
B. Configure Automatic Hide NAT on network 10.10.20.0/24 and then edit the Service column in the NAT Rule Base on the automatic rule.
C. Configure one Manual Hide NAT rule for HTTP, FTP, and SMTP services for network 10.10.20.0/24.
D. Configure three Manual Static NAT rules for network 10.10.20.0/24, one for each service.