Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Checkpoint
  5. 156-215.80

Checkpoint 156-215.80 Exam Questions
Check Point Certified Security Administrator (CCSA R80) (Page 12 )

Updated On: 24-Feb-2026
Page 12 of 108
PDF with 536 Questions

When you upload a package or license to the appropriate repository in SmartUpdate, where is the package or license stored

  1. Security Gateway
  2. Check Point user center
  3. Security Management Server
  4. SmartConsole installed device

Answer(s): C

Explanation:

SmartUpdate installs two repositories on the Security Management server:
1.License & Contract Repository, which is stored on all platforms in the directory $FWDIR\conf\.
2.Package Repository, which is stored:
- on Windows machines in C:\SUroot.
- on UNIX machines in /var/suroot.
The Package Repository requires a separate license, in addition to the license for the Security Management server. This license should stipulate the number of nodes that can be managed in the Package Repository.


Reference:

https://sc1.checkpoint.com/documents/R76/CP_R76_Installation_and_Upgrade_Guide-webAdmin/13128.htm#o13527



The tool ___________ generates an R80 Security Gateway configuration report.

  1. infoCP
  2. infoview
  3. cpinfo
  4. fw cpinfo

Answer(s): C

Explanation:

CPInfo is an auto-updatable utility that collects diagnostics data on a customer's machine at the time of execution and uploads it to Check Point servers (it replaces the standalone cp_uploader utility for uploading files to Check Point servers).
The CPinfo output file allows analyzing customer setups from a remote location. Check Point support engineers can open the CPinfo file in a demo mode, while viewing actual customer Security Policies and Objects. This allows the in-depth analysis of customer's configuration and environment settings.
When contacting Check Point Support, collect the cpinfo files from the Security Management server and Security Gateways involved in your case.


Reference:

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk92739



Which of the following commands can be used to remove site-to-site IPSEC Security Associations (SA)?

  1. vpn tu
  2. vpn ipsec remove -l
  3. vpn debug ipsec
  4. fw ipsec tu

Answer(s): A

Explanation:

vpn tu
Description Launch the TunnelUtil tool which is used to control VPN tunnels.
Usage vpn tu
vpn tunnelutil
Example vpn tu
Output


Reference:

https://sc1.checkpoint.com/documents/R76/CP_R76_CLI_WebAdmin/12467.htm#o12627



Which of the following is NOT an authentication scheme used for accounts created through SmartConsole?

  1. Security questions
  2. Check Point password
  3. SecurID
  4. RADIUS

Answer(s): A

Explanation:

Authentication Schemes:
- Check Point Password
- Operating System Password
- RADIUS
- SecurID
- TACAS
- Undefined If a user with an undefined authentication scheme is matched to a Security Rule with some form of authentication, access is always denied.



Using the SmartConsole, which pre-defined Permission Profile should be assigned to an administrator that requires full access to audit all configurations without modifying them?

  1. Editor
  2. Read Only All
  3. Super User
  4. Full Access

Answer(s): B

Explanation:

To create a new permission profile:
1. In SmartConsole, go to Manage & Settings > Permissions and Administrators > Permission Profiles.
2. Click New Profile.
The New Profile window opens.
3. Enter a unique name for the profile.
4. Select a profile type:
Read/Write All - Administrators can make changes
Auditor (Read Only All) - Administrators can see information but cannot make changes
Customized - Configure custom settings
5. Click OK.


Reference:

https://sc1.checkpoint.com/documents/R80/CP_R80_SecMGMT/html_frameset.htm?topic=documents/R80/CP_R80_SecMGMT/124265






Post your Comments and Discuss Checkpoint 156-215.80 exam dumps with other Community members:

Join the 156-215.80 Discussion