Cisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

Similar documents
Cisco Exactexams Questions & Answers

Cisco Questions & Answers

Cisco Actualtests Exam Questions & Answers

CertifyMe. CISCO EXAM QUESTIONS & ANSWERS

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Certkiller q. Cisco Implementing Advanced Cisco Unified Wireless Security v2.0

Vendor: Cisco. Exam Code: Exam Name: Implementing Advanced Cisco Unified Wireless Security (IAUWS) v2.0. Version: Demo

Cisco Exam Securing Wireless Enterprise Networks Version: 7.0 [ Total Questions: 53 ]

Cisco Exam Questions & Answers

Securing Cisco Wireless Enterprise Networks ( )

Cisco Exam Questions and Answers (PDF) Cisco Exam Questions BrainDumps

PrepKing. PrepKing

ITCertMaster. Safe, simple and fast. 100% Pass guarantee! IT Certification Guaranteed, The Easy Way!

DumpsFree. DumpsFree provide high-quality Dumps VCE & dumps demo free download

Cisco Exam Questions & Answers

Question: 1 The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?

FortiNAC. Cisco Airespace Wireless Controller Integration. Version: 8.x. Date: 8/28/2018. Rev: B

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Secure Access Solutions. Version: Demo

Configuring OfficeExtend Access Points

COPYRIGHTED MATERIAL. Contents

Cisco EXAM Implementing Cisco Unified Wireless Networking Essentials (IUWNE) Buy Full Product.

Template information can be overridden on individual devices.

PROTECTED EXTENSIBLE AUTHENTICATION PROTOCOL

CCIE Wireless v3 Lab Video Series 1 Table of Contents

Template information can be overridden on individual devices.

exam. Number: Passing Score: 800 Time Limit: 120 min CISCO Securing Wireless Enterprise Networks.

P ART 3. Configuring the Infrastructure

Introduction to 802.1X Operations for Cisco Security

Cisco Deploying Basic Wireless LANs

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

Configuring Auto-Anchor Mobility

TestsDumps. Latest Test Dumps for IT Exam Certification

ISE Primer.

Exam Questions CWSP-205

Cisco Securing Cisco Wireless Enterprise Networks (WISECURE) Download Full Version :

KillTest 䊾 䞣 催 ࢭ ད ᅌ㖦䊛 ᅌ㖦䊛 NZZV ]]] QORRZKYZ TKZ ϔᑈܡ䊏 ᮄ ࢭ

Real4Test. Real IT Certification Exam Study materials/braindumps

Deployment Guide for Cisco Guest Access Using the Cisco Wireless LAN Controller, Release 4.1

PrepKing. PrepKing

Network Security 1. Module 7 Configure Trust and Identity at Layer 2

exam. Number: Passing Score: 800 Time Limit: 120 min CISCO Deploying Cisco Wireless Enterprise Networks. Version 1.

Wireless LAN Security & Threat Mitigation

Secure Wireless LAN Design and Deployment

Configuring Auto-Anchor Mobility

Managing Rogue Devices

Exam HP2-Z32 Implementing HP MSM Wireless Networks Version: 7.1 [ Total Questions: 115 ]

CertifyMe. CertifyMe

Exam : PW Title : Certified wireless security professional(cwsp) Version : DEMO

Cisco S802dot1X - Introduction to 802.1X(R) Operations for Cisco Security Professionals.

Configuring NAC Out-of-Band Integration

Configure 802.1x Authentication with PEAP, ISE 2.1 and WLC 8.3

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Q&As. Implementing Cisco Unified Wireless Voice Networks (IUWVN) v2.0. Pass Cisco Exam with 100% Guarantee

Cisco Exam Questions & Answers

Cisco CCIE Wireless Beta Written. Download Full Version :

Vendor: HP. Exam Code: HP2-Z32. Exam Name: Implementing HP MSM Wireless Networks. Version: Demo

Cisco Wireless LAN Controller Module

The following chart provides the breakdown of exam as to the weight of each section of the exam.

Symbols. Numerics I N D E X

Security+ SY0-501 Study Guide Table of Contents

Configuring Hybrid REAP

Comptia.Certkey.SY0-401.v by.SANFORD.362q. Exam Code: SY Exam Name: CompTIA Security+ Certification Exam

Exam Questions Demo Cisco. Exam Questions

Mobility Groups. Information About Mobility

Configuring Layer2 Security

Cisco Exam Troubleshooting Cisco Wireless Enterprise Networks Version: 7.0 [ Total Questions: 60 ]

Cisco CISCO Advanced Wireless LAN for Field Engineers (AWLANFE) Practice Test. Version

CCIE Wireless v3.1 Workbook Volume 1

D. The bank s web server is using an X.509 certificate that is not signed by a root CA, causing the user ID and password to be sent unencrypted.

Cisco TrustSec How-To Guide: Universal Configuration for the Cisco Wireless LAN Controller

WITSHOOT Troubleshooting Cisco Wireless Enterprise Network

Standard For IIUM Wireless Networking

CCIE Wireless v3 Workbook Volume 1

PassCollection. IT certification exam collections provider, High pass rate

CertifyMe. CertifyMe

Release Notes for Avaya WLAN 9100 AOS-Lite Operating System WAP9112 Release WAP9114 Release 8.1.0

Cisco Network Admission Control (NAC) Solution

Configuring Security Solutions

Cisco CISCO Securing Networks with ASA Advanced. Practice Test. Version

Per-WLAN Wireless Settings

FlexConnect. Information About FlexConnect

Configuring Security Solutions

Wireless LAN Controller (WLC) Design and Features FAQ

Wireless LAN Controller (WLC) Mobility Groups FAQ

802.1x Port Based Authentication

CiscoWorks Wireless LAN Solution Engine Express 2.13

Cisco Wireless LAN Controller Module

Overview. Information About wips CHAPTER

Configuring FlexConnect Groups

This course prepares candidates for the CompTIA Network+ examination (2018 Objectives) N

Wireless Integration Overview

Numerics INDEX. AAA AAA mode active sessions AP/MSE Authorization 9-91 General 9-84 LDAP Servers 9-87

Configuring Client Profiling

Universal Wireless Controller Configuration for Cisco Identity Services Engine. Secure Access How-To Guide Series

Cisco Exam Implementing Cisco unified Wireless Voice Networks (IUWVN) v2.0 Version: 10.0 [ Total Questions: 188 ]

Configure Devices Using Converged Access Deployment Templates for Campus and Branch Networks

Wireless LANs Designing, Deploying, Managing and Securing an Enterprise Wireless Network

Unified Services Routers

Configuring WDS, Fast Secure Roaming, Radio Management, and Wireless Intrusion Detection Services

I N D E X 9-2 Numerics , ,

Transcription:

s@lm@n Cisco Exam 642-737 Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

Cisco 642-737 : Practice Test Question No : 1 RADIUS is set up with multiple servers on the controller and an engineer wants to select each server for specific WLANs. Where in the controller GUI is this configuration completed? A. Security > AAA > RADIUS B. Security > AAA > RADIUS > Fallback C. Security > Authentication > RADIUS D. WLANs > WLAN ID > Security > AAA Servers E. WLANs > WLAN ID > Security > Layer 3 F. WLANs > WLAN ID > Advanced > AAA Servers Answer: D Question No : 2 An engineer must change the wireless authentication from WPA2-Personal to WPA2- Enterprise. Which three requirements are necessary? (Choose three.) A. 802.1X B. EAP C. fast secure roaming D. 802.11i E. RADIUS F. 802.11u G. pre-shared key Answer: A,B,E Question No : 3 An engineer must segment traffic into separate WLANs. Which three factors should be used to determine traffic segmentation? (Choose three.) A. QoS policy B. subnet requirements C. application requirements 2

D. security capabilities E. access control policies for voice F. enterprise resource planning Answer: A,C,D Cisco 642-737 : Practice Test Question No : 4 Which three RADIUS IETF attributes should be enabled on the Cisco Secure ACS v4.2 when implementing IBN for VLAN assignment to the Cisco WLC v7.0? (Choose three.) A. [064] Tunnel-Type B. [065] Tunnel-Medium-Type C. [066] Tunnel-Client-Endpoint D. [067] Tunnel-Server-Endpoint E. [069] Tunnel-Password F. [081] Tunnel-Private-Group-ID G. [082] Tunnel-Private-User-ID Answer: A,B,F Question No : 5 An engineer is changing the encryption method of a wireless network from PEAP-MS- CHAP V2 to EAP-TLS. Which two changes are necessary? (Choose two.) A. The authentication server requires a new certificate. B. All authentication clients require their own certificates. C. The users require the Cisco AnyConnect client. D. A new certificate is required for each authenticated user. E. A Cisco NAC server is required. F. Cisco Secure ACS is required. Answer: A,B Question No : 6 An engineer is deploying a Cisco NAC appliance in a highly routed environment and 3

requires it to act as a DHCP server. What deployment model should be used? A. Layer 3 Virtual Gateway OOB Real-IP Gateway B. Layer 2 Virtual Gateway C. Layer 2 Real IP D. Layer 3 Real IP Answer: A Cisco 642-737 : Practice Test Question No : 7 Which three security features can be gained by installing a Cisco NAC Appliance into the network? (Choose three.) A. in-band or out-of-band deployment options B. intrusion detection C. bandwidth and traffic filtering controls D. posture assessment E. accurate identification, classification, and stopping of malicious traffic F. detection and containment of rogue clients Answer: A,C,D Question No : 8 An engineer creating a configuration file to upload to a controller would like the guest WLAN to be set for L3 authentication only. What command must be included in the configuration file? A. config wlan security web-auth enable 2 B. config wlan security wpa wpa2 disable 2 C. config wlan security web-auth server-precedence 2 local radius ldap D. config wlan custom-web global enable 2 Answer: A Question No : 9 4

Cisco 642-737 : Practice Test Which two attacks represent a social engineering attack? (Choose two.) A. using AirMagnet Wi-Fi Analyzer to search for hidden SSIDs B. calling the IT helpdesk and asking for network information C. spoofing the MAC address of an employee device D. entering a business and posing as IT support staff Answer: B,D Question No : 10 When configuring the WLC for single sign-on for the NAC, which device is used for the RADIUS accounting IP address? A. Cisco NAC Appliance Manager B. Cisco NAC Appliance Server C. Cisco NAC Guest Server D. Cisco ACS E. Cisco WCS Answer: A Question No : 11 Refer to the exhibit. 5

Cisco 642-737 : Practice Test What is the effect of setting Client Exclusion to Enabled and set to a Timeout Value of 0 seconds in a Cisco WLC v7.0? A. Excluded clients must be manually removed from the excluded list. B. Client exclusion will not occur. C. Client exclusion timeout will be determined by the IDS module. D. Clients will only be disconnected and not excluded. Answer: A Question No : 12 The Cisco Unified Wireless Network solution, which is based on version 7.0, provides which three wired-side tracing techniques? (Choose three.) A. switch port tracing B. adaptive wips C. RLDP D. autocontainment E. rogue detector F. H-REAP Answer: A,C,E Question No : 13 Employees are allowed to start bringing their own wireless devices to work for use on the 802.11a/b/g/n WLAN when using their existing credentials. However, they are experiencing issues. Which two items are the most probable cause of these issues? (Choose two.) A. incorrect IP address B. supplicant or driver C. incorrect user name D. wrong wireless band E. application issues Answer: B,E 6

Cisco 642-737 : Practice Test Question No : 14 All authentications are failing after a firewall is placed between the Cisco NAC guest server and RADIUS clients. Which two ports must be opened on the firewall? (Choose two.) A. TCP port 23 B. TCP port 443 C. UDP port 123 D. UDP port 1812 E. UDP port 1813 F. UDP port 16666 Answer: D,E Question No : 15 A network administrator is assigning a one-to-one association for VLAN to wireless WLAN or SSID. Given the implementation of a Cisco 2500 Series controller using v7.0, how many WLANs can be created? A. 8 B. 16 C. 32 D. 64 E. 128 F. 254 G. 512 Answer: B Question No : 16 When deploying wireless Cisco NAC OOB operations, which device signals the WLC to switch a user from a quarantine VLAN to an access VLAN? 7

A. Cisco NAC Appliance Manager B. Cisco NAC Appliance Server C. Cisco NAC Guest Server D. Cisco ACS E. Cisco WCS Answer: A Cisco 642-737 : Practice Test Question No : 17 Which statement correctly describes a wireless client connection to the Cisco WLC v7.0 that is configured for web guest access? A. The client associates to the anchor controller and authenticates to the anchor controller. B. The client associates to the anchor controller and authenticates to the foreign controller. C. The client associates to the foreign controller and authenticates to the anchor controller. D. The client associates to the foreign controller and authenticates to the foreign controller. Answer: C Question No : 18 Which three methods are valid for guest wireless using web authentication? (Choose three.) A. passthough B. SSL C. TLS D. RADIUS E. TACACS F. local Answer: A,D,F Question No : 19 An engineer is securing the wireless network from vulnerabilities. Which four strategies are 8

recommended for mitigation? (Choose four.) Cisco 642-737 : Practice Test A. MFP B. identity-based networking C. rogue location D. EAP-TLS E. guest monitoring F. RF profiles G. rogue detection H. password policies Answer: A,C,E,G Question No : 20 Which statement correctly describes the relationship between the foreign and anchor controllers when used for guest access? A. The foreign controller will load balance in round-robin fashion starting with the highest IP address anchor controller to the lowest IP address anchor controller. B. The foreign controller will load balance in round-robin fashion starting with the lowest IP address anchor controller to the highest IP address anchor controller. C. The foreign controller will load balance in round-robin fashion starting with the highest MAC address anchor controller to the lowest MAC address anchor controller. D. The foreign controller will load balance in round-robin fashion starting with the lowest MAC address anchor controller to the highest MAC address anchor controller. Answer: B Question No : 21 Which wireless attack can cause most client wireless adapters to lock up? A. management frame flood B. NULL probe response C. EAPOL flood D. RF jamming E. disassociation flood 9

F. deauthentication flood Cisco 642-737 : Practice Test Answer: B Question No : 22 For wireless NAC out-of-band operations, which protocol is used between the Cisco NAC Appliance Manager and the wireless controller to switch the wireless client from the quarantine VLAN to the access VLAN after the client has passed the NAC authentication and posture assessment process? A. RADIUS B. TACACS+ C. SNMP D. SSL E. EAP Answer: C Question No : 23 Client adapters on the wireless network are locking up and a packet capture shows many management frames with no SSID element. What signature should the engineer enable for the WLC to report this issue in the future? A. Deauth flood B. Null probe resp 2 C. EAPOL flood D. Wellenreiter Answer: B Question No : 24 An engineer is adding client entries with the controller addresses to ACS. What IP address format would be used to add the class C network 192.168.1.0 in a single entry? 10

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback