Check Point 156-587 Practice Exams
Last updated on Apr 09,2025- Exam Code: 156-587
- Exam Name: Check Point Certified Troubleshooting Expert - R81.20 (CCTE)
- Certification Provider: Check Point
- Latest update: Apr 09,2025
Like a Site-to-Site VPN between two Security Gateways, a Remote Access VPN relies on the Internet Key Exchange (IKE) what types of keys are generated by IKE during negotiation?
- A . Produce a symmetric key on both sides
- B . Produce an asymmetric key on both sides
- C . Symmetric keys based on pre-shared secret
- D . Produce a pair of public and private keys
In Check Point’s Packet Processing Infrastructure what is the role of Observers?
- A . Observers attach object IDs to traffic
- B . They store Rule Base matching state related information
- C . Observers monitor the state of Check Point gateways and report it to the security manager
- D . Observers decide whether or not to publish a CLOB to the Security Policy
Which of the following daemons is used for Threat Extraction?
- A . extractd
- B . tedex
- C . tex
- D . scrubd
What does CMI stand for in relation to the Access Control Policy?
- A . Context Manipulation Interface
- B . Context Management Infrastructure
- C . Content Management Interface
- D . Content Matching Infrastructure
Troubleshooting issues with Mobile Access requires the following:
- A . ‘ma_vpnd’ process on Security Gateway
- B . Debug logs of FWD captured with the command – ‘fw debug fwd on TDERROR_MOBILE_ACCESS=5′
- C . Standard VPN debugs, packet captures and debugs of cvpnd1 process on Security Gateway
- D . Standard VPN debugs and packet captures on Security Gateway, debugs of ‘cvpnd’ process on Security Management
How does Identity Collector connect to Windows Server?
- A . ADQuery is needed for connection
- B . LDAP connection
- C . It uses a PDP demon to connect
- D . via Windows API
When a User process or program suddenly crashes, a core dump is often used to examine the problem.
Which command is used to enable the core-dumping via GAIA clish?
- A . set core-dump enable
- B . set core-dump total
- C . set user-dump enable
- D . set core-dump per_process
What command is used to find out which port Multi-Portal has assigned to the Mobile Access Portal?
- A . mpcient getdata sslvpn
- B . netstat -nap | grep mobile
- C . netstat getdata sslvpn
- D . mpclient getdata mobi
What is the proper command for allowing the system to create core files?
- A . service core-dump start
- B . SFWDIR/scripts/core-dump-enable.sh
- C . set core-dump enable
>save config - D . # set core-dump enable
# save config
What cli command is run on the GW to verify communication to the identity Collector?
- A . pdp connections idc
- B . pep connections idc
- C . show idc connections
- D . fwd connected