When a gateway requires user information for authentication, what order does it query servers for user information?
When a gateway requires user information for authentication, what order does it query servers for user information?
The correct order in which a gateway queries servers for user information during authentication is: first, the internal user database, then LDAP servers in order of priority, and finally the generic external user profile. This ensures that the most specific and potentially fastest response comes from the internal database first, followed by LDAP servers which have a defined order of priority, and as a last fallback, the generic external profile is checked.
When a Security Gateway requires user information for authentication, it goes through this process: -The Security Gateway searches for the user in the internal users database. -If the specified user is not defined in the internal users database, the Security Gateway queries the LDAP server defined in the Account Unit with the highest priority. -If the query against an LDAP server with the highest priority fails (for example, the connection is lost), the Security Gateway queries the server with the next highest priority. -If there is more than one Account Unit, the Account Units are queried concurrently. The results of the query are taken from the first Account Unit to meet the conditions, or from all the Account Units which meet the conditions. -If the query against all LDAP servers fails, the Security Gateway matches the user against the generic external user profile..
Answer is A
Answer is A
A is correct
A is correct
A is correct
Check Point Certified Security Administrator (CCSA) R81.10 (524)
A. First - Internal user database, then LDAP servers in order of priority, finally the generic external user profile.