Amy is configuring a User Authentication rule for the technical-support department
to access an intranet server. What is the correct statement?
A. The Security Server first checks if there is any rule tat does not require authentication
for this type of connection.
B. The User Authentication rule must be placed above the Stealth Rule.
C. Once a user is first authenticated, the user will not be prompted for authentication
again until logging out.350-001
D. Amy can only use the rule for Telnet, FTP, and rlogin services.
E. Amy can limit the authentication attempts in the Authentication tab of the User
Properties screen.
Answer: A
Explanation: Answer A is correct since you can have a rule below the User
Authentication rule that allows the communication and the user will never get
prompted for a login.
Page 350 of the Official Student guide (NGX version 1.1)
"The fact that a user successfully connects does not necessarily mean that the user was first
authenticated.640-802 The authenticating Security Server first checks if the connection can be allowed by
a rule that does not require authentication. If one exists, the user will be connected through the
less-restrictive rule, bypassing the User Authentication rule."
Not B: Rules with User or Session Authentication as the action can be placed below the
Stealth Rule.VCP-310 All Client Authentication rules must be place above the Stealth rule, so they
have access to the Secure Gateway.
Leading the way in IT testing and certification tools, www.certifyme.com
- 55 -
Checkpoint Student Handbook Official courseware NGX I Rev 156.215.1 page 382
Not D:User Authentication supports HTTP and HTTPS along with Telnet, FTP and
rlogin
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment