Which Identity Source(s) should be selected in Identity Awareness for when there is a requirement for a higher level of security for sensitive servers?
Which Identity Source(s) should be selected in Identity Awareness for when there is a requirement for a higher level of security for sensitive servers?
For a higher level of security for sensitive servers, Endpoint Identity Agent and Browser-Based Authentication should be selected. The Endpoint Identity Agent provides strong identification as it requires the installation of an agent on the endpoint, ensuring that only authorized devices and users can access the sensitive servers. Browser-Based Authentication, often implemented through a Captive Portal, further enhances security by prompting users to authenticate via a web interface before gaining access. This layered approach makes it difficult for unauthorized access and meets the stringent security requirements for sensitive information.
Check Point Certified Security Administrator (CCSA) Guide R81.10 (page 513): "Endpoint Identity Agents and Browser-Based Authentication - When a higher level of security is necessary, the Captive Portal is used for distributing the Endpoint Identity Agent."
the correct answer is c