Which two Identity Awareness daemons are used to support identity sharing?
Which two Identity Awareness daemons are used to support identity sharing?
Policy Decision Point (PDP) is responsible for collecting and sharing identity data, while Policy Enforcement Point (PEP) is responsible for enforcing network access restrictions based on the identity data provided by PDP. These two daemons work together to support identity sharing in identity awareness systems.
https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_IdentityAwareness_AdminGuide/Topics-IDAG/Identity-Awareness-Config-Identity-Sharing.htm
PDP and PEP, correct. Ref: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk88520
Check Point Certified Security Administrator (CCSA) R81.10 Guide (page 515): "Two Identity Awareness CLI commands support identity sharing: PDP and PEP. Policy Decision Point (PDP) is the process on the Security Gateway responsible for collecting and sharing identities. Policy Enforcement Point (PEP) is the process responsible for enforcing network access restrictions. PEP decisions are made based on the identity data collected from the PDP"
D is corect: https://sc1.checkpoint.com/documents/R80.40/WebAdminGuides/EN/CP_R80.40_IdentityAwareness_AdminGuide/Topics-IDAG/Identity-Awareness-Deployment-Identity-Sharing.htm?Highlight=policy%20decision%20point