Check Point Certified Security Administrator (CCSA) R81.20 — Question 108

The purpose of the Communication Initialization process is to establish a trust between the Security Management Server (SMS) to other Check Point Gateways and Servers. Which statement best describes this Secure Internal Communication (SIC)?

Answer options

• A. After successful initialization, the gateway can communicate with any Check Point node that possesses a SIC certificate signed by the same ICA.
• B. New firewalls can easily establish the trust by using the expert password defined on the SMS and the SMS IP address.
• C. A SIC certificate is automatically generated on the gateway because the gateway hosts a subordinate CA to the SMS ICA.
• D. Secure Internal Communications authenticates the security gateway to the SMS before http communications are allowed.

Correct answer: A

Explanation

Answer A is correct because it accurately describes that after the SIC initialization, a gateway can communicate with any Check Point node that has a valid SIC certificate signed by the same ICA. Option B is incorrect as new firewalls cannot establish trust solely by using an expert password and SMS IP address. Option C is wrong because the SIC certificate is not generated automatically; rather, it is based on the established trust. Option D misrepresents the process, as SIC involves more than just authenticating before HTTP communications.