Which one of the following is the preferred licensing model? Select the BEST answer.

A. Local licensing because it ties the package license to the IP-address of the gateway and has no dependency of the Security Management Server.

B. Local licensing because it ties the package license to the MAC-address of the gateway management interface and has no Security Management Server dependency.

C. Central licensing because it ties the package license to the IP-address of the Security Management Server and has no dependency on the gateway.

D. Central licensing because it ties the package license to the MAC-address of the Security Management Server's Mgmt-interface and has no dependency on the gateway.

Which command shows the installed licenses in Expert mode?

A. show licenses

B. fwlic print

C. cplic print

D. print cplic

Which Check Point Application Control feature enables application scanning and detection?

A. Application Dictionary

B. Application Library

C. CPApp

D. AppWiki

Which path below is available only when CoreXL is enabled?

A. Slow path

B. Firewall path

C. Medium path

D. Accelerated path

What is NOT an advantage of Stateful Inspection?

A. High Performance

B. Good Security

C. No Screening above Network layer

D. Transparency

When defining group-based access in an LDAP environment with Identity Awareness, what is the BEST object type to represent an LDAP group in a Security Policy?

A. Access Role

B. User Group

C. SmartDirectory Group

D. Group Template

What are the three tabs available in SmartView Tracker?

A. Network and Endpoint, Management, and Active

B. Network, Endpoint, and Active

C. Predefined, All Records, Custom Queries

D. Endpoint, Active, and Custom Queries

Which of the following is an identity acquisition method that allows a Security Gateway to identify Active Directory users and computers?

A. UserCheck

B. Active Directory Query

C. Account Unit Query

D. User Directory Query

Which command is used to add users to or from existing roles?

A. Add rba user roles

B. Add rba user

C. Add user roles

D. Add user

An administrator is creating an IPsec site-to-site VPN between his corporate office and branch office. Both offices are protected by Check Point Security Gateway managed by the same Security Management Server (SMS). While configuring the VPN community to specify the pre-shared secret, the administrator did not find a box to input the pre-shared secret. Why does it not allow him to specify the pre-shared secret?

A. The Gateway is an SMB device

B. The checkbox "Use only Shared Secret for all external members" is not checked

C. Certificate based Authentication is the only authentication method available between two Security Gateway managed by the same SMS

D. Pre-shared secret is already configured in Global Properties