Certification tests Certification training Certification tests mcse ccna a+
Practice Tests CCNA MCSE A+ Network+
  IT Certification Practice Exams   HOME  | Cisco  | CompTIA  | CheckPoint | CIW | Microsoft | Books | Bootcamp |  Buy Now!

CheckPoint® CCSA (CheckPoint Certified Security Administrator)

Practice Questions: FireWall-1 Authentication support.

Home                                     CCSA Practice Questions                              Previous                    Next

Q5. Which of the following authentication scheme is NOT supported by VPN-1/FireWall-1

 

A.   OS Password

B.    S/Key

C.   FireWall-1 Password

D.  Kerberos

 

 

                                                         

Correct Answer: D.

Explanation:

VPN-1/FireWall-1 supports the following internal authentication schemes:
1. OS Password: This is Operating System password
2. FireWall-1 password: This is an encryped password supported by FireWall-1
3. S/Key: One time password, very secure.


The following external authentication schemes are supported:
1. SecurID: Here the Security Dynamics PassCode is entered by the user.
2. EXENT Pathway Defender: Separate server software requires response from the user.
3. RADIUS: Requires RADIUS server to perform centralized authentication.
4. TACACS: TACACS server prompts the user for a response.
The Kerberos authentication scheme is not supported by CheckPoint 2000 VPN-1/FireWall-1.

Home                                                                                                Previous                    Next