As a firewall administrator, you are required to create VPN-1/Firewall-1 users for authentication.
When you create a user for user authentication, the data is stored in the?
A.
Inspect Engine.
B.
Rule base.
C.
Users database
D.
Rulebase fws file
E.
Inspect module.
Explanation:
When you create users in VPN/Firewall 1 you are storing them in a component, called the User
Database. Note that the user database reside in the management station and si pushed / installed
to the firewall modules when a policy is installed. See page 219 of Syngress Book “Checkpoint NG
– Next Generation Security Administration”.
Incorrect Answers:
A: This is not the place where users are stored, this is the place where the traffic is matched to the
rules inside the policies.
B: The rulebase contains the criteria for the security policy that is scanned through the inspect
engine, it doesn’t store the users.
D: The users aren’t here, they are in the User Database, see the explanation above.
E: An inspect module is a piece of inspect code used by the inspect engine to extend the
capabilities of the firewall in native form, it doesn’t store the users.