CCSE Full Test UPDATED QUESTIONS AND
CORRECT ANSWERS
What allows an administrator to configure network access and auditing based on three
factors? - CORRECT ANSWER Identity Awareness
What are the default port numbers for an LDAP server for standard and SSL connections? -
CORRECT ANSWER 389 for standard connections and 636 for SSL connections.
What information is NOT collected from a Security Gateway in a CPINFO by default? -
CORRECT ANSWER Firewall logs
What command displays all installed hotfixes? - CORRECT ANSWER cpinfo -y all
Which command collects diagnostic data for analyzing a customer setup remotely? -
CORRECT ANSWER cpinfo
What type of rules in the Access Control rulebase allow control connections by default? -
CORRECT ANSWER Implied Rules
What is the configuration summary of your Check Point system called? - CORRECT
ANSWER cpinfo
What is the name of the secure application for Mail/Calendar for mobile devices? -
CORRECT ANSWER Capsule Workspace
What is the difference between SSL VPN and IPSec VPN? - CORRECT
ANSWER IPSec VPN requires installation of a resident VPN client, while SSL VPN
requires only an installed browser.
Which Remote Access Client does not provide an Office-Mode Address? - CORRECT
ANSWER SecuRemote
,What feature allows Remote-access VPN users to access resources across a site-to-site VPN
tunnel? - CORRECT ANSWER Community Specific VPN Domain
What are the two modes of SSL Network Extender (SNX)? - CORRECT
ANSWER Network and Application
What is true about Capsule Connect? - CORRECT ANSWER It is a full layer 3 VPN
client.
Which Mobile Access Application allows secure access to internal websites, file shares, and
emails? - CORRECT ANSWER Check Point Capsule Workspace
Which Mobile Access Solution is clientless? - CORRECT ANSWER Mobile Access
Portal
What does the Log server send to the Correlation Unit? - CORRECT ANSWER Logs
What is the recommended configuration for SmartLog indexing and SmartEvent event
retention? - CORRECT ANSWER Choose different settings for log storage and
SmartEvent db.
What are the two types of tests when using the Compliance blade? - CORRECT
ANSWER Global tests and Object-based tests
What does the command 'ps aux | grep fwd' check? - CORRECT ANSWER It checks
the Process ID and the processing time of the fwd process.
What describes the Check Point ThreatCloud? - CORRECT ANSWER A worldwide
collaborative security network.
, What command shows the API server status? - CORRECT ANSWER api status
What could NOT cause synchronization issues in a Management HA environment? -
CORRECT ANSWER Hardware clocks do not match even with adjustments for
different time zones.
What order should be used when upgrading a Management High Availability Cluster? -
CORRECT ANSWER Primary Management, then Secondary Management.
What command would show the hotfixes installed on your Check Point server? - CORRECT
ANSWER cpinfo -y all
What feature ensures stable connectivity to the management server in overwhelmed network
situations? - CORRECT ANSWER Management Data Plane Separation
Which process is used for backward compatibility of gateways in R80.x and newer? -
CORRECT ANSWER fwm
What component of Management is used for indexing? - CORRECT ANSWER SOLR
What is the responsibility of the SOLR process on the management server? - CORRECT
ANSWER It generates indexes of data written to the database.
What is the difference between Updatable Objects and Dynamic Objects? - CORRECT
ANSWER Updatable Objects are updated automatically by the Threat Cloud; Dynamic
Objects are maintained locally.
Which process handles connections from SmartConsole R80? - CORRECT
ANSWER cpd
CORRECT ANSWERS
What allows an administrator to configure network access and auditing based on three
factors? - CORRECT ANSWER Identity Awareness
What are the default port numbers for an LDAP server for standard and SSL connections? -
CORRECT ANSWER 389 for standard connections and 636 for SSL connections.
What information is NOT collected from a Security Gateway in a CPINFO by default? -
CORRECT ANSWER Firewall logs
What command displays all installed hotfixes? - CORRECT ANSWER cpinfo -y all
Which command collects diagnostic data for analyzing a customer setup remotely? -
CORRECT ANSWER cpinfo
What type of rules in the Access Control rulebase allow control connections by default? -
CORRECT ANSWER Implied Rules
What is the configuration summary of your Check Point system called? - CORRECT
ANSWER cpinfo
What is the name of the secure application for Mail/Calendar for mobile devices? -
CORRECT ANSWER Capsule Workspace
What is the difference between SSL VPN and IPSec VPN? - CORRECT
ANSWER IPSec VPN requires installation of a resident VPN client, while SSL VPN
requires only an installed browser.
Which Remote Access Client does not provide an Office-Mode Address? - CORRECT
ANSWER SecuRemote
,What feature allows Remote-access VPN users to access resources across a site-to-site VPN
tunnel? - CORRECT ANSWER Community Specific VPN Domain
What are the two modes of SSL Network Extender (SNX)? - CORRECT
ANSWER Network and Application
What is true about Capsule Connect? - CORRECT ANSWER It is a full layer 3 VPN
client.
Which Mobile Access Application allows secure access to internal websites, file shares, and
emails? - CORRECT ANSWER Check Point Capsule Workspace
Which Mobile Access Solution is clientless? - CORRECT ANSWER Mobile Access
Portal
What does the Log server send to the Correlation Unit? - CORRECT ANSWER Logs
What is the recommended configuration for SmartLog indexing and SmartEvent event
retention? - CORRECT ANSWER Choose different settings for log storage and
SmartEvent db.
What are the two types of tests when using the Compliance blade? - CORRECT
ANSWER Global tests and Object-based tests
What does the command 'ps aux | grep fwd' check? - CORRECT ANSWER It checks
the Process ID and the processing time of the fwd process.
What describes the Check Point ThreatCloud? - CORRECT ANSWER A worldwide
collaborative security network.
, What command shows the API server status? - CORRECT ANSWER api status
What could NOT cause synchronization issues in a Management HA environment? -
CORRECT ANSWER Hardware clocks do not match even with adjustments for
different time zones.
What order should be used when upgrading a Management High Availability Cluster? -
CORRECT ANSWER Primary Management, then Secondary Management.
What command would show the hotfixes installed on your Check Point server? - CORRECT
ANSWER cpinfo -y all
What feature ensures stable connectivity to the management server in overwhelmed network
situations? - CORRECT ANSWER Management Data Plane Separation
Which process is used for backward compatibility of gateways in R80.x and newer? -
CORRECT ANSWER fwm
What component of Management is used for indexing? - CORRECT ANSWER SOLR
What is the responsibility of the SOLR process on the management server? - CORRECT
ANSWER It generates indexes of data written to the database.
What is the difference between Updatable Objects and Dynamic Objects? - CORRECT
ANSWER Updatable Objects are updated automatically by the Threat Cloud; Dynamic
Objects are maintained locally.
Which process handles connections from SmartConsole R80? - CORRECT
ANSWER cpd
