
実践サンプルと問題集と指導には2026年最新の156-536有効なテスト問題集
最新 [2026年01月16日] 100%合格率保証付きの素晴らしい156-536試験問題PDF
CheckPoint 156-536 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
質問 # 53
The Push Operation Wizard allows users to select which three topics for Push Operations?
- A. Anti-Ransomware, Forensics and Analysis, Agent Configurations
- B. Anti-Virus, Remediation, Agent Settings
- C. Anti-Malware, Analysis, Agent Deployment
- D. Anti-Malware, Forensics and Remediation, Agent Settings
正解:D
質問 # 54
When in the Strong Authentication workflow is the database installed on the secondary server?
- A. Exactly when Endpoint security is enabled
- B. Before Endpoint security is enabled
- C. After synchronization and before Endpoint security has been enabled
- D. After Endpoint security is enabled
正解:C
質問 # 55
Which command in CLI session is used to check status of Check Point processes on Harmony Endpoint Management server?
- A. ps -aux | grep EPM
- B. cpwd state
- C. cpwd_admin list
- D. show mgmt server state
正解:C
質問 # 56
The Harmony Endpoint solution includes which three Data Security Software Capability protections?
- A. * Full Disk Encryption
* Media Encryption & Port Protection (MEPP)
* Remote Access VPN - B. * Media Encryption
* Media Decryption
* Remote Access VPN - C. * Passwords and Usernames
* Port Protection (MEPP)
* Security Questions - D. * Full Disk Encryption
* Media Encryption
* Anti-Malware
正解:A
解説:
The Harmony Endpoint solution provides a suite of Data Security Software Capability protections, specifically Full Disk Encryption (FDE),Media Encryption & Port Protection (MEPP), andRemote Access VPN, as explicitly listed in theCP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf. Onpage 20, under the
"Endpoint Security Client" section, the document states:
"Full Disk Encryption: Combines Pre-boot protection, boot authentication, and strong encryption..."
"Media Encryption and Media Encryption & Port Protection: Protects data stored on the computers by encrypting removable media devices and allowing tight control over computers' ports..."
"Remote Access VPN: Provide secure, seamless access to corporate networks remotely, over IPsec VPN." These three components are integral to securing data at rest (FDE), data on removable media and ports (MEPP), and data in transit (Remote Access VPN), makingOption Dthe correct choice.
* Option Aincludes Anti-Malware, which, while part of Harmony Endpoint, is categorized under threat prevention rather than data security protection (see page 20). Media Encryption is a subset of MEPP but lacks the port protection aspect.
* Option Blists "Passwords and Usernames" and "Security Questions," which are authentication mechanisms, not data security protections. Port Protection (MEPP) is correct but incomplete without its full scope.
* Option Cincludes "Media Decryption," which is not a standalone feature (decryption is inherent to encryption processes), and misses FDE, a key data security component.
References:
CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 20: "Endpoint Security Client" (lists FDE, MEPP, and Remote Access VPN as data security components).
質問 # 57
With which release of Endpoint Client is the Anti-Malware engine based on Sophos instead to Kaspersky?
- A. Endpoint Client release E86.26 and higher for Cloud deployments
- B. Endpoint Client release E81.20 and higher for On-premises deployments
- C. Endpoint Client release E84.40 and higher for all deployments
- D. Endpoint Client release E83.20 and higher for Cloud deployments
正解:C
質問 # 58
Before installing FDE on a client machine, what should administrators make sure of?
- A. That system volumes include at least 32 MB of continuous space
- B. That system volumes include at least 25 MB of continuous space
- C. That system volumes include at least 36 MB of continuous space
- D. That system volumes include at least 50 MB of continuous space
正解:A
質問 # 59
What communication protocol does Harmony Endpoint management use to communicate with the management server?
- A. SIC
- B. UDP
- C. CPCOM
- D. TCP
正解:A
質問 # 60
On which desktop operating systems are Harmony Endpoint Clients supported?
- A. Windows Client, MacOS and Linux
- B. Windows Servers and Clients, MacOS and Linux
- C. Only Windows and MacOS
- D. Windows, MacOS, Linux and Unix
正解:B
質問 # 61
The Harmony Endpoint solution includes which three Data Security Software Capability protections?
- A. * Media Encryption* Media Decryption* Remote Access VPN
- B. * Passwords and Usernames* Port Protection (MEPP)* Security Questions
- C. * Full Disk Encryption* Media Encryption* Anti-Malware
- D. * Full Disk Encryption* Media Encryption & Port Protection (MEPP)* Remote Access VPN
正解:D
質問 # 62
In addition to passwords, what else does the pre-boot environment also support?
- A. Options for remote authentication method
- B. Options for multi-factor authentication methods
- C. Options for single-factor authentication method
- D. Options for double-factor authentication method
正解:B
質問 # 63
In the POLICY Tab of the Harmony Endpoint portal for each software capability (Threat Prevention, Data Protection, etc.), rules can be created to protect endpoint machines. Choose the true statement.
- A. The default rule is a global rule that only applies to Computers. Rules for Users must be added manually by the administrator.
- B. There are no rules to start with, and administrators must create rules in order to deploy the capability policies, actions, and behavior.
- C. The default rule is a global rule which applies to all users and computers in the organization.
- D. There are only rules for the Harmony Endpoint Firewall capability. All other capabilities only include Actions.
正解:C
解説:
In the Harmony Endpoint portal, the POLICY Tab is used to manage security policies for various software capabilities such as Threat Prevention, Data Protection, and others. These policies are enforced through rules that dictate how each capability behaves on endpoint machines. TheCP_R81.
20_Harmony_Endpoint_Server_AdminGuide.pdfprovides clear evidence on how these rules are structured by default.
Onpage 166, under the section "Defining Endpoint Security Policies," the documentation states:
"You create and assign policies to the root node of the organizational tree as a property of each Endpoint Security component." This indicates that a default policy (or rule) is established at the root level of the organizational hierarchy, inherently applying to all entities-users and computers-within the organization unless overridden by more specific rules. Further supporting this, onpage 19, in the "Organization-Centric model" section, it explains:
"You then define software deployment and security policies centrally for all nodes and entities, making the assignments as global or as granular as you need." This global assignment at the root node confirms that the default rule encompasses all users and computers in the organization, aligning withOption D. The documentation does not suggest that the default rule is limited to computers only (Option A), nor does it state that no rules exist initially (Option B), or that rules are exclusive to the Firewall capability (Option C). Instead, each capability has its own default policy that applies globally until customized.
* Option Ais incorrect because the default rule is not limited to computers. Page 19 notes: "The Security Policies for some Endpoint Security components are enforced for each user, and some are enforced on computers," showing that policies can apply to both based on the component, not just computers.
* Option Bis false as the guide confirms default policies exist at the root node, not requiring administrators to create them from scratch (see page 166).
* Option Cis inaccurate since rules exist for all capabilities (e.g., Anti-Malware on page 313, Media Encryption on page 280), not just Firewall, and all capabilities involve rules, not just actions.
References:
CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 19: "Organization-Centric model" (global policy assignment).
CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 166: "Defining Endpoint Security Policies" (policy assignment to the root node).
質問 # 64
What does Unauthenticated mode mean?
- A. Computers and users are trusted based on the passwords and usernames only.
- B. Computers and users are trusted based on their IP address and username.
- C. Computers and users might present a security risk, but still have access.
- D. Computers and users have credentials, but they are not verified through AD.
正解:D
質問 # 65
"Heartbeat" refers to what?
- A. A server connection that happens every 5 minutes
- B. A periodic client connection to the server
- C. A random server connection
- D. A client connection that happens every 60 seconds
正解:B
質問 # 66
How many digits are required in the FDE policy settings to enable a Very High-Security level for remote help on pre-boot?
- A. 24 digits
- B. 40 digits
- C. Minimum 20 digits
- D. Maximum 30 digits
正解:D
質問 # 67
Which User Roles are on the Endpoint Security Management Server for On-Premises servers?
- A. Super Admin, Primary Administrator, User Admin, Read-Only
- B. Admin and Read-Only
- C. Super Admin, Read-Write All, Read-Only
- D. Primary Administrator and Read-Only
正解:B
解説:
On-premises servers have only two user roles: "Admin" & "Read-only".
These are the roles:
Admin - Full Read & Write access to all system aspects.
Read-Only User - Has access to all system aspects, but cannot make any changes.
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN
/CP_R81_EndpointWebManagement_AdminGuide/Topics-HEPWM-R81
/Managing_Users_in_Harmony_Endpoint.htm
質問 # 68
External Policy Servers are placed between the Endpoint clients and the Endpoint Security Management Server. How many Policy Servers are supported per environment?
- A. From 1 to 5 Policy Servers are supported
- B. From 1 to 15 Policy Servers are supported
- C. From 1 to 20 Policy Servers are supported
- D. From 1 to 25 Policy Servers are supported
正解:C
解説:
External Policy Servers (EPS) enhance scalability in large Harmony Endpoint deployments by managing client communications. TheCP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdfspecifies the maximum number of EPS supported per environment.
Onpage 190, under "Installing and Configuring an Endpoint Policy Server," the documentation states:
"You can install up to 20 Endpoint Policy Servers in an environment."
This extract directly confirms that1 to 20 Policy Serversare supported, makingOption Cthe correct answer.
The limit ensures efficient load distribution without overwhelming the management infrastructure.
Evaluating the other options:
* Option A: "From 1 to 25" exceeds the documented maximum of 20.
* Option B: "From 1 to 15" underestimates the supported capacity.
* Option D: "From 1 to 5" severely restricts the scalability potential outlined in the documentation.
Option Caligns perfectly with the official specification, supporting large-scale deployments as intended.
References:
CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 190: "Installing and Configuring an Endpoint Policy Server" (maximum EPS count).
質問 # 69
In a Standalone installation, the EMS is installed on the same computer or a different one than the NMS?
- A. Both
- B. Different
- C. Half on one and half on another computer
- D. Same
正解:D
質問 # 70
You're going to prepare a Deployment Scenario of an Endpoint Security Client on a Windows machine in an On-Prem environment. You choose one of two basic deployments - which is typical for a local deployment?
- A. Agent (free Client) package only
- B. Agent (Initial Client) and Software Blades packages
- C. Agent-less (no Client) and Software Blades packages
- D. Agent (Initial Client) package only
正解:B
質問 # 71
Which of the following is not protected by the Full Disk Encryption (FDE) software
1) Client's user data
2) Operating system files
3) Temporary files
4) Erased files
- A. Temporary files
- B. Temporary and erased files
- C. All of these are protected with FDE
- D. Erased files
正解:B
質問 # 72
Name one way to install Endpoint Security clients:
- A. Third-party deployment tools
- B. Manual deployment using the internet
- C. Package import
- D. Automatic using the server deployment rules
正解:B
質問 # 73
Is it possible to change the encryption algorithm on a fully encrypted disk, without need to decrypt it first? Is it possible to re-encrypt the disk on-the-fly?
- A. Changing the encryption algorithm is supported on all machines, but you must first decrypt it, change encryption algorithm, and encrypt it again with new encryption algorithm.
- B. Changing the encryption algorithm is supported on all machines, no matter which firmware they have.
- C. Changing the encryption algorithm is only supported on machines with legacy BIOS firmware. EFI or UEFI Firmware is not supported.
- D. Changing the encryption algorithm is only on machines that have EFI or IJEFI firmware. BIOS Firmware is not supported.
正解:A
解説:
* Process Requirement:
* Full decryption is mandatory before changing the encryption algorithm (e.g., switching from AES-128 to AES-256).
* Re-encryption occurs after algorithm selection, with no on-the-fly conversion supported.
* Firmware Agnostic:
* Applies uniformly to BIOS, UEFI, and legacy systems (no firmware-based exceptions).
* Documentation Source:
* *Check Point Full Disk Encryption Administration Guide R81.10+*:
"To modify the encryption algorithm, the disk must be fully decrypted first. After decryption, deploy a new policy with the updated algorithm to trigger re-encryption."
## Critical Note:
Attempting to change algorithms without decryption corrupts data and requires recovery tools.
Why Other Options Fail:
* A/D: Incorrectly link algorithm changes to firmware (BIOS/UEFI), which is unsupported.
* C: On-the-fly re-encryption is technologically infeasible for FDE solutions due to cryptographic key hierarchy constraints.
# Official Reference: FDE Admin Guide (Section: Changing Encryption Settings).
質問 # 74
Which permissions apply the same access level to the entire organization?
- A. Global user permission settings
- B. Regional user permission settings
- C. Organization-wide permission settings
- D. Universal user permission settings
正解:C
質問 # 75
You are facing a lot of CPU usage and high bandwidth consumption on your Endpoint Security Server. You check and verify that everything is working as it should be, but the performance is still very slow. What can you do to decrease your bandwidth and CPU usage?
- A. You can use some of your Endpoints as Super Nodes since super nodes reduce bandwidth as well as CPU usage.
- B. Your company's size is not large enough to have a valid need for Endpoint Solution.
- C. The management High Availability sizing is not correct. You have to purchase more servers and add them to the cluster.
- D. Your company needs more bandwidth. You have to increase your bandwidth by 300%.
正解:A
解説:
High CPU usage and bandwidth consumption on the Endpoint Security Server can significantly impact performance. While theCP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdfdoes not explicitly mention
"Super Nodes" as a term within the provided extracts, the concept aligns with Check Point's strategies for distributing load and optimizing resource usage, such as using Endpoint Policy Servers (EPS) or peer-to-peer mechanisms common in endpoint security solutions. Option D suggests leveraging endpoints as Super Nodes to offload server tasks, which is a plausible approach to reduce both bandwidth and CPU usage.
Onpage 25, under "Optional Endpoint Security Elements," the documentation describes Endpoint Policy Servers as a method to alleviate server load:
"Endpoint Policy Servers improve performance in large environments by managing most communication with the Endpoint Security clients. Managing the Endpoint Security client communication decreases the load on the Endpoint Security Management Server, and reduces the bandwidth required between sites." While EPS are dedicated servers, the idea of distributing workload to endpoints (as Super Nodes) follows a similar principle. Super Nodes typically act as distribution points for updates, policies, or logs, reducing direct server-client interactions. Although not detailed in the provided document, this is a recognized practice in Check Point's ecosystem and endpoint security at large, making Option D the most effective solution among the choices.
Let's evaluate the alternatives:
* Option A: "The management High Availability sizing is not correct. You have to purchase more servers and add them to the cluster." High Availability (HA) is addressed onpage 202under
"Management High Availability," focusing on redundancy and failover, not performance optimization.
Adding servers might help distribute load, but it's a costly and indirect solution compared to leveraging existing endpoints.
* Option B: "Your company's size is not large enough to have a valid need for Endpoint Solution." This is illogical and unsupported by the documentation. Endpoint security is essential regardless of company size, as noted onpage 19under "Introduction to Endpoint Security."
* Option C: "Your company needs more bandwidth. You have to increase your bandwidth by 300%." Increasing bandwidth addresses only one aspect (bandwidth consumption) and not CPU usage. It's an inefficient fix that doesn't tackle the root cause, and no documentation supports such an extreme measure.
Thus,Option Dis the best answer, inferred from Check Point's load distribution principles, even though
"Super Nodes" isn't explicitly cited in the provided extracts.
References:
CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 25: "Optional Endpoint Security Elements" (EPS for load reduction).
General Check Point best practices for endpoint load distribution.
質問 # 76
......
156-536時間限定!無料アクセス:https://www.jpntest.com/shiken/156-536-mondaishu
156-536認定有効な試験問題集と解答学習ガイド:https://drive.google.com/open?id=1biJ51vCdvexOKqTBfhMWhk-GLVutzyUF