Check Point Certified Security Administrator (CCSA) R81.20 — Question 96

What is required for a certificate-based VPN tunnel between two gateways with separate management systems?

Answer options

• A. Shared Secret Passwords
• B. Unique Passwords
• C. Shared User Certificates
• D. Mutually Trusted Certificate Authorities

Correct answer: D

Explanation

The correct answer is D because for a certificate-based VPN, both gateways must trust the same Certificate Authorities to validate each other's certificates. Options A, B, and C do not provide the necessary trust relationship required for secure certificate-based communication between the two separate management systems.