The Harmony Endpoint solution includes which three Data Security Software Capability protections?
Correct Answer: A
Question 12
What connection options does Connection Awareness support?
Correct Answer: D
Connection Awareness in Harmony Endpoint supports two specific connection options:Connected to ManagementandConnected to a List of Specified Targets. This is detailed in theCP_R81. 20_Harmony_Endpoint_Server_AdminGuide.pdfon page 27 under the "Client to Server Communication" section. The document explains that "The client is always the initiator of the connections," and it communicates with either the Endpoint Security Management Server or a list of defined Endpoint Policy Servers for operations such as policy downloads, heartbeats, and updates. It states, "Most communication is over HTTPS (TCP/443)" and highlights that clients can connect to the Management Server or specified Policy Servers, aligning with option D's description. Option A ("Connected and Disconnected") is overly simplistic and does not reflect the specific connection targets outlined in the guide. Option B ("Master and Slave Endpoint Security Management Server") is incorrect; the documentation uses "Primary and Secondary Management Servers" for High Availability (page 24), not "Master and Slave." Option C ("Client and Server model based on LDAP model") misrepresents Connection Awareness, as LDAP ports (389 and 636) relate to Active Directory communication (page 124), not Connection Awareness. Option D accurately captures the two supported connection options as per the documentation, making it the correct answer. References: CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 27: Client to Server Communication (describes client connections to Management or Policy Servers). CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 24: Endpoint Security Architecture (clarifies Primary and Secondary server roles). CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 124: Active Directory Scanner (mentions LDAP ports, unrelated to Connection Awareness).
Question 13
When does the pre-boot logon require users to authenticate?
Correct Answer: B
Pre-boot logon, part of Check Point Harmony Endpoint's Full Disk Encryption (FDE), requires users to authenticatebefore the computer's main operating system starts. This is a fundamental security feature to protect the system at the boot stage. TheCP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdfonpage 223 , under "Authentication before the Operating System Loads (Pre-boot)," states: "Pre-boot protection requires users to authenticate before the computer's operating system starts." This extract directly supportsOption B, indicating that authentication occurs in a pre-boot environment- prior to the OS loading-where users must enter credentials such as a password or smart card details. * Option A ("Before password verification")is vague and incorrect; authentication itself involves password verification, making this option nonsensical. * Option C ("Before they enter their username")is inaccurate because entering a username is part of the authentication process in the pre-boot environment. * Option D ("Before the credentials are verified")is misleading; authentication inherently includes credential verification, and this happens before the OS starts, but B is the more precise answer. References: CP_R81.20_Harmony_Endpoint_Server_AdminGuide.pdf, Page 223: "Authentication before the Operating System Loads (Pre-boot)" (confirms authentication occurs before the OS starts).
Question 14
What connection options does Connection Awareness support?
Correct Answer: B
Question 15
What do the machine's Endpoint Client GUI Overview page, Web Management, and debug logs show?
Correct Answer: B
* Endpoint Client GUI Overview Page: * Displays real-time status of: * Policy download progress * User acquisition (AD/identity binding) * FDE pre-boot setup completion * Disk encryption phase (e.g., "Encrypting: 75%") * Web Management Portal: * Tracks granular deployment stages across all endpoints: * Policy assignment status * FDE initialization * Encryption progress * Authentication configuration * Debug Logs: * Record technical details for each phase: * Policy retrieval errors (epcpolicy.log) * User acquisition failures (auth.log) * FDE setup issues (fde_install.log) * Encryption errors (encryption.log) # Source: Check Point Harmony Endpoint Administration Guide R81.10 (Section: Client Deployment Monitoring, Page 217).