EnsurepassQuestion 601 How do you block some seldom-used FTP commands, such as CWD, and FIND from passing through the Gateway? A. Add the restricted commands to the aftpd.conf file in the Security Management Server. B. Modify the desired profile in the FTP commands under Protection Details in the IPS tab. C. Configure the restricted FTP commands in the Security Servers screen of the Global Properties. D. Enable FTP Bounce checking / Application Intelligence / Protocol Protections from the IPS tab. Read more [...]
EnsurepassQuestion 591 Which internal user authentication protocols are supported in SSL VPN? A. Check Point Password, SecurID, LDAP, RADIUS, TACACS B. Check Point Password, SecurID, L2TP, RADIUS, TACACS C. Check Point Password, SecurID, Active Directory, RADIUS, TACACS D. Point Password, SecurID, OS Password, RADIUS, TACACS   Answer: D     Question 592 Which Remote Desktop protocols are supported natively in SSL VPN? A. Microsoft RDP only B. AT&T VNC and Microsoft RDP C. Citrix Read more [...]
EnsurepassQuestion 581 To configure a Security Management Server for an SSL VPN Gateway, you can set up log forwarding from that Gateway. All of the following tasks must be performed to accomplish this, EXCEPT: A. Defining a remote log server in the "Remote Log Server" box. B. Establishing SIC between the Security Management Server and the SSL VPN Gateway. C. Initiating the put key process in order to facilitate Secure Internal Communications (SIC). D. Providing the Security Management Server's IP Read more [...]
EnsurepassQuestion 571 Which of the following is a supported deployment for Connectra? A. IPSO 4.9 build 88 B. VMWare ESX C. Solaris 10 D. Windows server 2007   Answer: B     Question 572 To force clients to use Integrity Secure Workspace when accessing sensitive applications, the Administrator can configure Connectra: A. Via protection levels B. To implement Integrity Clientless Security C. To force the user to re-authenticate at login D. Without a special setting. Secure Workspace Read more [...]
EnsurepassQuestion 561 While using the SmartProvisioning Wizard to create a new profile, you cannot continue because there are no devices to select. What is a possible reason for this? i) All devices already have a profile assigned to them ii) Provisioning Blade is not enabled on the devices iii) No UTM- 1/Power- 1/Secure Platform devices are defined in SmartDashboard iv) SIC is not established on the devices. A. (ii), (iii) or (iv) B. (ii) only C. (iii) or (iv) D. (i) or (iii)   Answer: D Read more [...]
EnsurepassQuestion 551 In SmartWorkflow, what is NOT a valid possibility? A. Task Flow without Session and without Role Segregation B. Task Flow without Session but with Role Segregation C. Task Flow with Session but without Role Segregation D. Task Flow with Session and with Role Segregation   Answer: B     Question 552 What is a possible reason for the grayed out Restore Version button in the screenshot of the Database Revision Control while trying to restore Old_Structure? A. Old_Structure Read more [...]
EnsurepassQuestion 541 When a security administrator logs in to SmartDashboard and selects Continue without session from the following window, what kind of access will be granted to him in SmartDashboard? A. He will get read-only access to the policy, network objects and session management. B. He will get read-only access to the policy and network objects; however, he can still manage the sessions, i.e. Approve, Request Repair etc. C. A new session will automatically be created with a default session Read more [...]
EnsurepassQuestion 531 What is the significance of the depicted icon in the SmartWorkflow toolbar? A. Submit for Approval B. Check the consistency of SmartWorkflow sessions. C. Overall status information: Everything is OK. D. Session has been approved.   Answer: A     Question 532 When selecting a backup target using SmartProvisioning, which target is NOT available? A. Locally on device B. FTP C. SCP D. TFTP   Answer: B     Question 533 Which of the following can NOT Read more [...]
EnsurepassQuestion 521 If SmartWorkflow is configured to work without Sessions or Role Segregation, how does the SmartDashboard function? A. The SmartDashboard functions as if SmartWorkflow is not enabled but an automatic session exists in the background and full SmartView tracker and audit trail functionality will be available. B. The SmartDashboard will function without SmartWorkflow, with no session and no audit trail functionality. C. The SmartDashboard will have no session but SmartView Tracker Read more [...]
EnsurepassQuestion 511 What happens when an Administrator activates the DLP Portal for Self Incident Handling and enters its fully qualified domain name (DNS name)? A. Connections created between the user and the DLP Gateway when clicking links within e-mail notifications to send or discard quarantined e-mails (matched for an Ask User rule) are encrypted. B. The daemon running DLP Portal starts to run and can cater requests from users' browsers (following links from e-mail notifications) and from Read more [...]
EnsurepassQuestion 501 Which operating system(s) support(s) unnumbered VPN Tunnel Interfaces (VTIs) for route-based VPNs? A. Red Hat Linux B. SecurePlatform for NCjX and higher C. Solaris 9 and higher D. IPSO 3.9 and higher   Answer: D     Question 502 Which of the following items can be provisioned via a Profile through SmartProvisioning? i) Backup Schedule ii) DNS Entries iii) Hosts Table iv) Domain Name v) Interface IP's A. i, ii, iii, iv, v B. i, ii, iii, iv C. i D. i, ii, iv Read more [...]
EnsurepassQuestion 491 What can be said about RSA algorithms? Select all that apply. A. Long keys can be used in RSA for enhances security B. Short keys can be used for RSA efficiency. C. RSA is faster to compute than DES D. RSA¡¯s key length is variable.   Answer: A,B,D     Question 492 What is the most typical type of configuration for VPNs with several externally managed Gateways? A. star community B. mesh community C. domain community D. Hybrid community E. SAT community   Read more [...]