← Back to exam page

156-915.77 Check Point Certified Security Expert Update

Loading demo links...

Showing 10–12 of 15 questions

Question 10 (User Managment and Authentication Obj 1)

As a Security Administrator, you must refresh the Client Authentication authorization timeout every time a new user connection is authorized. How do you do this? Enable the

Refreshable Timeout setting:

Select an option, then click Submit answer.

  • in the user object's Authentication screen.

  • in the Gateway object's Authentication screen.

  • in the Limit tab of the Client Authentication Action Properties screen.

  • in the Global Properties Authentication screen.


Question 11 (Deployment Platforms Obj 2)

Several Security Policies can be used for different installation targets. The Firewall protecting Human Resources’ servers should have its own Policy Package. These rules must be installed on this machine and not on the Internet Firewall. How can this be accomplished?

Select an option, then click Submit answer.

  • A Rule Base is always installed on all possible targets. The rules to be installed on a Firewall are defined by the selection in the Rule Base row Install On.

  • When selecting the correct Firewall in each line of the Rule Base row Install On, only this Firewall is shown in the list of possible installation targets after selecting Policy > Install on Target.

  • In the menu of SmartDashboard, go to Policy > Policy Installation Targets and select the correct firewall via Specific Targets.

  • A Rule Base can always be installed on any Check Point Firewall object. It is necessary to select the appropriate target directly after selecting Policy > Install on Target.


Question 12 (SmartReporting and SmartEvent)

You have selected the event Port Scan from Internal Network in SmartEvent, to detect an event when 30 port scans have occurred within 60 seconds. You also want to detect two port scans from a host within 10 seconds of each other. How would you accomplish this?

Select an option, then click Submit answer.

  • Define the two port-scan detections as an exception.

  • You cannot set SmartEvent to detect two port scans from a host within 10 seconds of each other.

  • Select the two port-scan detections as a sub-event.

  • Select the two port-scan detections as a new event.