Which type of Endpoint Identity Agent includes packet tagging and computer authentication?
Which type of Endpoint Identity Agent includes packet tagging and computer authentication?
The Full Endpoint Identity Agent includes packet tagging and computer authentication. It is the default Identity Agent that provides these functionalities and requires administrator permissions to be used. This type of agent ensures enhanced security measures, such as preventing IP spoofing and enabling computer authentication, which are not available in the Light or other types of Identity Agents.
Identity Agent Description Full Default Identity AgentClosed that includes packet tagging and computer authentication. It applies to all users on the computer on which it is installed. Administrator permissions are required to use the Full Identity Agent type. For the Full Identity Agent, you can enforce IP spoofing protection. In addition, you can leverage computer authentication if you specify computers in Access Roles. Light Default Identity Agent that does not include packet tagging and computer authentication. You can install this Identity Agent individually for each user on the target computer. Light Identity Agent type does not require Administrator permissions. https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_IdentityAwareness_AdminGuide/Topics-IDAG/Identity-Sources-Identity-Agents.htm
Check Point Certified Security Administrator (CCSA) R81.10 Guide (page 508): "Full Endpoint Identity Agent - This agent includes packet tagging and computer authentication. Packet tagging prevents spoofing from connection and passing through the Security Gateway. Full Endpoint agents require administrator permissions for use."
A - Full