Check Point Certified Security Administrator (CCSA) R81 — Question 94

The purpose of the Communication Initialization process is to establish a trust between the Security Management Server and the Check Point gateways. Which statement best describes this Secure Internal Communication (SIC)?

Answer options

• A. After successful initialization, the gateway can communicate with any Check Point node that possesses a SIC certificate signed by the same ICA.
• B. Secure Internal Communications authenticates the security gateway to the SMS before http communications are allowed.
• C. A SIC certificate is automatically generated on the gateway because the gateway hosts a subordinate CA to the SMS ICA.
• D. New firewalls can easily establish the trust by using the expert password defined on the SMS and the SMS IP address.

Correct answer: A

Explanation

The correct answer, A, accurately describes that after the SIC initialization, the gateway can communicate with other Check Point nodes that share a SIC certificate signed by the same ICA. Option B is incorrect because SIC authentication occurs before any HTTP communications, not just after. Option C is misleading as it suggests that the SIC certificate generation is solely dependent on the gateway’s role as a subordinate CA, which is not the case. Option D is not correct because using the expert password and SMS IP address does not directly relate to how trust is established through SIC.