How can cached usernames and passwords be cleared from the memory of a security gateway?
A. By installing a security policy
B. They will stay in memory until they time out
C. By issuing the CLI command fw ctl mem -purge
D. By rebooting the gateway
正解:A
質問 2:
Which explanation of an Account Unit is INCORRECT?
A. When a query about a user is sent to the Gateway, it chooses one of the LDAP servers defined on the Account Unit according to their priorities.
B. An Account Unit is a 3rd party product that stores an external user Database.
C. An Account Unit is the interface which allows interaction between the Secure Web Gateway and the LDAP servers.
D. Each Account Unit represents one or more branches of the data maintained on the LDAP server.
正解:B
質問 3:
UserCheck is a way to improve security in the company and to raise the Awareness of the users. Which interaction modes can a firewall administrator choose when configuring UserCheck for a given rule?
A. Block, Revoke, Ask
B. UserCheck is a predefined action and cannot be modified further
C. Block, Ask, Inform
D. Block, Ask, Once a day
正解:C
質問 4:
Which of these mechanisms does a gateway configured with Identity Awareness and LDAP initially use to communicate with a Windows 2003 or 2008 server?
A. RPC
B. WMI
C. HTTP
D. CIFS
正解:B
質問 5:
In what places can an access role be used?
A. In the security rule base and DLP policy
B. In the Application & URL Filtering rule base
C. Access roles can only replace the legacy authentication methods
D. In the security rule base and in the Application & URL Filtering rule base
正解:D
質問 6:
Which statement is TRUE concerning the Secure Web Gateway default configuration?
A. The Anti-Bot software blade cannot be added to a gateway with a Secure Web Gateway configuration.
B. If a system error affects the Application Control Policy and it cannot be applied, all application traffic will be blocked.
C. The Application and URL Filtering policy is applied to traffic before the Firewall Security Policy.
D. If there is a system overload that impacts Application Control traffic inspection, all application traffic will be passed.
正解:B
質問 7:
During the Application Control Discovery process, what is the best source of information for decisions on blocking or not blocking an application?
A. The Help Desk
B. The User
C. The Security Administrator
D. The Group Manager
正解:B
Someya -
間違い選択肢についても確認できる。
いろいろ問題集が出てますが、圧倒的に良いと思います。