Cisco Exactexams Questions & Answers

Similar documents
Cisco Questions & Answers

Cisco Actualtests Exam Questions & Answers

CertifyMe. CISCO EXAM QUESTIONS & ANSWERS

Certkiller q. Cisco Implementing Advanced Cisco Unified Wireless Security v2.0

Cisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

Vendor: Cisco. Exam Code: Exam Name: Implementing Advanced Cisco Unified Wireless Security (IAUWS) v2.0. Version: Demo

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Cisco Exam Questions & Answers

COPYRIGHTED MATERIAL. Contents

ITCertMaster. Safe, simple and fast. 100% Pass guarantee! IT Certification Guaranteed, The Easy Way!

Cisco Exam Questions and Answers (PDF) Cisco Exam Questions BrainDumps

Cisco Exam Questions & Answers

Securing Cisco Wireless Enterprise Networks ( )

Exam : PW Title : Certified wireless security professional(cwsp) Version : DEMO

FortiNAC. Cisco Airespace Wireless Controller Integration. Version: 8.x. Date: 8/28/2018. Rev: B

Cisco EXAM Implementing Cisco Unified Wireless Networking Essentials (IUWNE) Buy Full Product.

TestsDumps. Latest Test Dumps for IT Exam Certification

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

The following chart provides the breakdown of exam as to the weight of each section of the exam.

PrepKing. PrepKing

Configuring Layer2 Security

Configuring OfficeExtend Access Points

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Secure Access Solutions. Version: Demo

Configuring FlexConnect Groups

Deployment Guide for Cisco Guest Access Using the Cisco Wireless LAN Controller, Release 4.1

P ART 3. Configuring the Infrastructure

Real4Test. Real IT Certification Exam Study materials/braindumps

PROTECTED EXTENSIBLE AUTHENTICATION PROTOCOL

Template information can be overridden on individual devices.

Cisco Exam Securing Wireless Enterprise Networks Version: 7.0 [ Total Questions: 53 ]

Vendor: HP. Exam Code: HP2-Z32. Exam Name: Implementing HP MSM Wireless Networks. Version: Demo

Securing Wireless LAN Controllers (WLCs)

D. The bank s web server is using an X.509 certificate that is not signed by a root CA, causing the user ID and password to be sent unencrypted.

Wireless LAN Controller (WLC) Design and Features FAQ

ISE Primer.

Secure Wireless LAN Design and Deployment

Configuring FlexConnect Groups

Configuring Hybrid REAP

CertifyMe. CertifyMe

Template information can be overridden on individual devices.

Cisco Passguide Exam Questions & Answers

Exam HP2-Z32 Implementing HP MSM Wireless Networks Version: 7.1 [ Total Questions: 115 ]

Question: 1 The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?

DumpsFree. DumpsFree provide high-quality Dumps VCE & dumps demo free download

exam. Number: Passing Score: 800 Time Limit: 120 min CISCO Deploying Cisco Wireless Enterprise Networks. Version 1.

Authentication and Security: IEEE 802.1x and protocols EAP based

Mobile MOUSe WIRELESS TECHNOLOGY SPECIALIST ONLINE COURSE OUTLINE

Cisco ISE Features. Cisco Identity Services Engine Administrator Guide, Release 1.4 1

Configuring Client Profiling

FAQ on Cisco Aironet Wireless Security

Q&As. Implementing Cisco Unified Wireless Voice Networks (IUWVN) v2.0. Pass Cisco Exam with 100% Guarantee

ISE Version 1.3 Self Registered Guest Portal Configuration Example

Architecting Network for Branch Offices with Cisco Unified Wireless Karan Sheth Sr. Technical Marketing Engineer

Chapter 1 Describing Regulatory Compliance

CertifyMe. CertifyMe

Standard For IIUM Wireless Networking

exam. Number: Passing Score: 800 Time Limit: 120 min CISCO Securing Wireless Enterprise Networks.

Numerics INDEX. AAA AAA mode active sessions AP/MSE Authorization 9-91 General 9-84 LDAP Servers 9-87

CCIE Wireless v3 Lab Video Series 1 Table of Contents

Cisco Exam Troubleshooting Cisco Wireless Enterprise Networks Version: 7.0 [ Total Questions: 60 ]

Cisco Securing Cisco Wireless Enterprise Networks (WISECURE) Download Full Version :

Cisco Certification Exam

PassCollection. IT certification exam collections provider, High pass rate

Cisco Wireless LAN Controller Module

Exam Questions CWSP-205

Cisco Deploying Basic Wireless LANs

Configuring Authentication Types

Securing a Wireless LAN

CertKiller q

Architecting Network for Branch Offices with Cisco Unified Wireless

Provide One Year Free Update!

Cisco Wireless LAN Controller Module

Cisco Network Admission Control (NAC) Solution

Expected Outcomes Able to design the network security for the entire network Able to develop and suggest the security plan and policy

BYOD: BRING YOUR OWN DEVICE.

Securing Wireless LANs

Open System - No/Null authentication, anyone is able to join. Performed as a two way handshake.

Chapter 24 Wireless Network Security

Cisco Exam Questions & Answers

CISCO EXAM QUESTIONS & ANSWERS

CCIE Wireless v3 Workbook Volume 1

Implementing Cisco Unified Wireless Networking Essentials Volume 1

RADIUS Configuration Note WINS : Wireless Interoperability & Network Solutions

Configuring the WMIC for the First Time

Cisco Exam Questions & Answers

Wireless LAN Security. Gabriel Clothier

Configuring the Client Adapter through Windows CE.NET

Agile Controller-Campus V100R002C10. Permission Control Technical White Paper. Issue 01. Date HUAWEI TECHNOLOGIES CO., LTD.

Wireless Network Security

Number: Passing Score: 800 Time Limit: 120 min File Version: Vendor: Cisco. Exam Code:

Network Security 1. Module 7 Configure Trust and Identity at Layer 2

2012 Cisco and/or its affiliates. All rights reserved. 1

Configuring Management Frame Protection

PrepKing. PrepKing

Numerics INDEX. 2.4-GHz WMIC, contrasted with 4.9-GHz WMIC g 3-6, x authentication 4-13

Network Security: WLAN Mobility. Tuomas Aura CS-E4300 Network security Aalto University, Autumn 2017

Configuring Security Solutions

Managing Rogue Devices

CISCO EXAM QUESTIONS & ANSWERS

Configuring the Client Adapter through the Windows XP Operating System

Transcription:

Cisco Exactexams 642-737 Questions & Answers Number: 642-737 Passing Score: 800 Time Limit: 120 min File Version: 23.4 http://www.gratisexam.com/ Cisco 642-737 Questions & Answers Exam Name: Implementing Advanced Cisco Unified Wireless Security (IAUWS) v2.0 For Full Set of Questions please visit: http://www.actualtests.com/exam-642-737.htm

Actualtests QUESTION 1 Which statement describes the major difference between PEAP and EAP-FAST client authentication? A. EAP-FAST requires a backend AAA server, and PEAP does not. B. EAP-FAST is a Cisco-only proprietary protocol, whereas PEAP is an industry-standard protocol. C. PEAP requires a server-side certificate, while EAP-FAST does not require certificates. D. PEAP authentication protocol requires a client certificate, and EAP-FAST requires a secure password. Correct Answer: C /Reference: : QUESTION 2 What are the four packet types that are used by EAP? (Choose four.) A. EAP Type B. EAP Request C. EAP Identity D. EAP Response E. EAP Success F. EAP Failure G. EAP Authentication Correct Answer: BDEF /Reference: : QUESTION 3 When a supplicant and AAA server are configured to use PEAP, which mechanism is used by the client to authenticate the AAA server in Phase One? A. PMK B. shared secret keys C. digital certificate D. PAC Correct Answer: C /Reference: : QUESTION 4 What are two of the benefits that the Cisco AnyConnect v3.0 provides to the administrator for client WLAN security configuration? (Choose two.)

A. Provides a reporting mechanism for rouge APs B. Prevents a user from adding any WLANs C. Hides the complexity of 802.1X and EAP configuration D. Supports centralized or distributed client architectures E. Provides concurrent wired and wireless connectivity F. Allows users to modify but not delete admin-created profiles Correct Answer: CD /Reference: : QUESTION 5 When using the Standalone Profile Editor in the Cisco AnyConnect v3.0 to create a new NAM profile, which two statements describe the profile becoming active? (Choose two.) A. selects the new profile from NAM B. selects "Network Repair" from NAM C. becomes active after a save of the profile name D. ensures use of "configuration.xml" as the profile name E. ensures use of "config.xml" as the profile name F. ensures use of "nam.xml" as the profile name Correct Answer: BD /Reference: : QUESTION 6 Which three parameters can be communicated between a Cisco WLC v7.0 and Cisco Compatible Extensions v4-enabled client to improve a secure roaming connection? (Choose three.) http://www.gratisexam.com/ A. minimum SNR B. transition time C. scan threshold D. hysteresis E. PER F. MIC errors Correct Answer: BCD

/Reference: : QUESTION 7 Employees are allowed to start bringing their own wireless devices to work for use on the 802.11a/b/g/n WLAN when using their existing credentials. However, they are experiencing issues. Which two items are the most probable cause of these issues? (Choose two.) A. incorrect IP address B. supplicant or driver C. incorrect user name D. wrong wireless band E. application issues Correct Answer: BE /Reference: : QUESTION 8 Wireless NAC single sign-on uses which type of RADIUS records to notify the Cisco NAC Appliance Manager about the authenticated wireless clients? A. accounting records B. authentication records C. authentication and accounting records D. preauthentication records Correct Answer: A /Reference: QUESTION 9 When configuring the WLC for single sign-on for the NAC, which device is used for the RADIUS accounting IP address? A. Cisco NAC Appliance Manager B. Cisco NAC Appliance Server C. Cisco NAC Guest Server D. Cisco ACS E. Cisco WCS Correct Answer: A /Reference: :

QUESTION 10 Which option verifies that a wireless client has authenticated to a WLAN when performing NAC using the Cisco NAC Appliance Manager and Server? A. Cisco CAM OOB Management > Devices > Discovered Clients B. Cisco CAS OOB Management > Devices > Discovered Clients C. Cisco CAM Monitor > View Online Users D. Cisco CAS Monitor > View Online Users Correct Answer: C /Reference: : QUESTION 11 Which attribute on the Cisco WLC v7.0 does RADIUS IETF attribute "Tunnel-Private-Group ID" assign? A. ACL B. DSCP C. QoS D. VLAN Correct Answer: D /Reference: : QUESTION 12 The Cisco WLC v7.0 is configured for external authentication of the management access to the WLC itself using the Cisco Secure ACS v4.2. The management user is limited to read access for all menu options except for full read/write access to the WLAN menu options. Which two items are required in the Cisco Secure ACS network configuration to enable correct AAA? (Choose two.) A. AP IP address B. WLC virtual IP address C. WLC management IP address D. WLC AP management IP address E. hostname matching the WLC case-sensitive name F. authentication using RADIUS G. authentication using TACACS+ Correct Answer: CG /Reference:

: QUESTION 13 Configuring the Cisco Secure ACS with a self-signed certificate supports which requirement? A. when no user certificate is required B. when a CA-signed certificate is required for the user C. when a self-signed certificate Class 4 is required for the user D. when a self-signed certificate Class 0 is required for the user Correct Answer: A /Reference: : QUESTION 14 Which two statements about the sponsor accounts on the Cisco NAC Guest Server are true? (Choose two.) A. The sponsor login to the Cisco NAC Guest Server is at https://ngs-ip-address/admin to create, view, and edit guest accounts. B. The Cisco NAC Guest Server can authenticate the sponsors using the local database or via Microsoft Active Directory or LDAP or RADIUS servers. C. Sponsoring user groups is the method by which to assign permissions to the sponsors. D. Guest roles provide a way to give different levels of access to different sponsor accounts. E. Sponsor accounts require admin privileges to generate reports. Correct Answer: BC /Reference: : QUESTION 15 Which two statements are true about configuring a wired guest LAN feature? (Choose two.) A. Create a WLAN on the anchor controller only B. Select the management interface as the egress interface to reach the anchor controller C. Require an anchor controller to implement D. Select the interface that you created as the guest LAN interface in the ingress interface menu E. Configure on any controller from version 5.2 forward Correct Answer: BD /Reference: : QUESTION 16 Which statement correctly describes the relationship between the foreign and anchor controllers when used for guest access?

A. The foreign controller will load balance in round-robin fashion starting with the highest IP address anchor controller to the lowest IP address anchor controller. B. The foreign controller will load balance in round-robin fashion starting with the lowest IP address anchor controller to the highest IP address anchor controller. C. The foreign controller will load balance in round-robin fashion starting with the highest MAC "Pass Any Exam. Any Time." - www.actualtests.com 17 Cisco 642-737 Exam address anchor controller to the lowest MAC address anchor controller. D. The foreign controller will load balance in round-robin fashion starting with the lowest MAC address anchor controller to the highest MAC address anchor controller. Correct Answer: B /Reference: : QUESTION 17 Which two firewall ports must be opened for the anchor controller to operate properly with a foreign controller for guest access? (Choose two.) A. ports 16666 and 16667 for controller traffic B. port 97 for EoIP traffic C. port 80 for HTTP traffic D. port 69 for TFTP traffic Correct Answer: AB /Reference: : QUESTION 18 Which one of the options is responsible for multiple requirements for account data protection such as with credit cards? A. ISO B. IEEE C. IETF D. Wi-Fi Alliance E. PCI F. HIPAA G. GLBA Correct Answer: E /Reference: : QUESTION 19 A Cisco WLC v7.0 has been only initially configured through the console setup CLI wizard. A new AP has just finished association with the controller. What is the default mode of remote access to the AP?

A. HTTPS B. HTTP C. SSH D. Telnet E. access is disabled Correct Answer: E /Reference: : QUESTION 20 Which two tools help to provide PCI compliance reports? (Choose two.) A. WLC B. WCS C. MSE D. Ekahau Site Survey E. AirMagnet WiFi Analyzer Correct Answer: BE /Reference: : QUESTION 21 The Cisco Unified Wireless Network solution, which is based on version 7.0, provides which three wired-side tracing techniques? (Choose three.) A. switch port tracing B. adaptive wips C. RLDP D. autocontainment E. rogue detector F. H-REAP Correct Answer: ACE /Reference: : QUESTION 22 Refer to the exhibit.

What is the effect of setting Client Exclusion to Enabled and set to a Timeout Value of 0 seconds in a Cisco WLC v7.0? A. Excluded clients must be manually removed from the excluded list. B. Client exclusion will not occur. C. Client exclusion timeout will be determined by the IDS module. D. Clients will only be disconnected and not excluded. Correct Answer: A /Reference: : "Pass Any Exam. Any Time." - www.actualtests.com 21 Cisco 642-737 Exam QUESTION 23 The NetStumbler tool is an example of which wireless attack type? A. denial of service B. information gathering C. hijacking D. eavesdropping Correct Answer: B

/Reference: : QUESTION 24 Which device performs the definition of rules and requirements for posture assessment of a wireless client when implementing a NAC appliance solution? A. Cisco NAC Guest Server B. Cisco Secure Access Control System C. Cisco 802.1X supplicant D. Cisco NAC Appliance Agent E. Cisco NAC Appliance Manager F. Cisco NAC Appliance Server G. Cisco IPS Appliance Correct Answer: E /Reference: : QUESTION 25 Which two firewall protocol port(s) need open access for secure management access to an anchor WLC for guest access? (Choose two.) A. TCP 22 B. TCP 23 C. TCP 80 D. TCP 8080 E. TCP 443 F. UDP 123 Correct Answer: AE /Reference: : QUESTION 26 An IPS appliance is being integrated into the Cisco Unified Wireless Network solution in promiscuous mode. Which two parameters are required when configuring a Cisco WLC v7.0 for the addition of the IPS appliance services? (Choose two.) A. WLAN > AAA Override is enabled B. WLAN > P2P Blocking is enabled C. WLAN > Client Exclusion is enabled D. WLAN > NAC State is enabled E. Security > RADIUS accounting IP address F. Security > Sensors IP address

Correct Answer: CF /Reference: : QUESTION 27 A wireless client has finished 802.1X and EAP using WPA2 with a controller-based AP network using a central AAA server. How is unicast encryption implemented on the client? A. The client uses the PMK that is sent from the AAA server that is derived from EAP authentication. B. The client uses the PTK that is sent from the WLC, which was derived from the PMK that is sent from the AAA server. C. The client uses the PTK that is derived from EAP authentication. D. The client uses the PMK that is derived from a four-way handshake with the AP. E. The client uses the PTK that is derived from a four-way handshake with the AP. Correct Answer: E /Reference: : QUESTION 28 What does the Cisco WLC v7.0 use to encrypt broadcast and multicast frames that are sent to a wireless client? A. PMK B. GTK C. PTK D. OKC E. PSK Correct Answer: B /Reference: : QUESTION 29 Many employees are bringing their own devices to work such as those running Apple ios for iphones and ipads. Which three statements correctly describe authentication for these devices? (Choose three.) A. supports only broadcast networks B. supports broadcast and hidden networks C. supports only pre-shared key (pass phrase) D. supports most EAP types such as EAP-FAST, EAP-TLS, and PEAP E. supports WPA only F. supports WEP, WPA, and WPA2 Correct Answer: BDF

/Reference: : QUESTION 30 Which two statements describe the use of NAM by the Cisco AnyConnect v3.0? (Choose two.) A. removes Cisco Secure Services Client v5.x but retains the configuration for NAM B. removes Cisco Secure Services Client v5.x software and configuration for a clean install C. installs on Windows, Mac, and Linux D. installs on Windows only E. requires a license F. requires a profile editor to allow a user to add WLANs Correct Answer: AD /Reference: : QUESTION 31 Which two fast roaming algorithms will allow a WLAN client to roam to a new AP and re-establish a new session key without a full reauthentication of the WLAN client? (Choose two.) A. PMK B. PTK C. MIC D. GTK E. CKM F. PKC Correct Answer: EF /Reference: : QUESTION 32 Employees are allowed to starting bringing their own laptops to work. Which option can help provide a temporal user device vulnerability check when using the Java applet or ActiveX? A. Cisco NAC Server B. Cisco NAC Guest Server C. Cisco NAC Manager D. Cisco NAC Windows Agent E. Cisco NAC Web Agent F. Cisco ACS Correct Answer: E

/Reference: : QUESTION 33 When deploying wireless Cisco NAC OOB operations, which device signals the WLC to switch a user from a quarantine VLAN to an access VLAN? A. Cisco NAC Appliance Manager B. Cisco NAC Appliance Server C. Cisco NAC Guest Server D. Cisco ACS E. Cisco WCS Correct Answer: A /Reference: : QUESTION 34 For wireless NAC out-of-band operations, which protocol is used between the Cisco NAC Appliance Manager and the wireless controller to switch the wireless client from the quarantine VLAN to the access VLAN after the client has passed the NAC authentication and posture assessment process? A. RADIUS B. TACACS+ C. SNMP D. SSL E. EAP Correct Answer: C /Reference: : QUESTION 35 Which option verifies that a wireless client has associated but is not yet authenticated to a WLAN when performing NAC using the Cisco NAC Appliance Manager and Server? A. Cisco CAM OOB Management > Devices > Discovered Clients B. Cisco CAS OOB Management > Devices > Discovered Clients C. Cisco CAM Monitor > View Online Users D. Cisco CAS Monitor > View Online Users Correct Answer: A /Reference: :

QUESTION 36 Which two statements best describe the local authentication configuration options for a H-REAP using H-REAP groups in the Cisco WLC v7.0? (Choose two.) A. LEAP and EAP-FAST only B. LEAP, EAP-FAST, EAP-PEAP, and EAP-TLS only C. LEAP, EAP-FAST, EAP-PEAP, EAP-TLS, and EAP-MD5 D. EAP-FAST with PAC provision only E. EAP-FAST with PAC or certificate provision Correct Answer: AD /Reference: : QUESTION 37 Cisco Client MFP is supported on which modes of LWAPP and CAPWAP APs? A. Local, H-REAP, and Bridge B. Local, H-REAP, and Monitor C. Local, H-REAP, and Rogue Detector D. Sniffer, H-REAP, and Bridge Correct Answer: A /Reference: : QUESTION 38 Which answer best describes the implementation of IBN using the Cisco WLC v7.0 and Cisco Secure ACS v4.2? A. Configure the ACS for AAA override and attributes. Configure the WLC for RADIUS server. B. Configure the ACS for AAA override and attributes. Configure the WLC for RADIUS server and attributes. C. Configure the ACS for attributes. Configure the WLC for RADIUS server and AAA override. D. Configure the ACS for attributes. Configure the WLC for RADIUS server, AAA override, and attributes. Correct Answer: D /Reference: : QUESTION 39 When using a controller-based AP network, which type of entry is configured in the Cisco Secure ACS? A. AAA client using the AP IP address B. AAA server using the AP IP address C. AAA client using the WLC IP address D. AAA server using the WLC IP address

Correct Answer: A /Reference: : QUESTION 40 Which two entries can be used in the Cisco Secure ACS AAA network configuration setup for IP address 192.168.1.1 to provide RADIUS authentication for the network node? (Choose two.) A. 192.168.1.1-10 B. 192.168.1.0 C. 192.168.1.0 0.0.0.255 D. 192.168.1.255 E. 192.168.1.* Correct Answer: AE /Reference: : QUESTION 41 Which two EAP type(s) require a client certificate? (Choose two.) A. LEAP B. PEAP C. EAP-FAST D. EAP-TLS E. EAP-MD5 Correct Answer: CD /Reference: : QUESTION 42 What is the maximum number of ACLs that can be applied to a Cisco WLC v7.0 interface? A. 1 B. 16 C. 32 D. 64 Correct Answer: A /Reference: :

QUESTION 43 "Pass Any Exam. Any Time." - www.actualtests.com 37 Cisco 642-737 Exam Refer to the exhibit. Why is the client failing to authenticate with the AAA server? A. excessive number of authentication attempts for username B. incorrect read/write credentials for username C. incorrect IP address being sent by client D. incorrect authentication for username Correct Answer: D /Reference: : QUESTION 44 Which statement about the Cisco NAC Guest Server that is deployed in wireless guest access implementations is true? A. The Cisco NAC Guest Server integrates with the Cisco WCS through the RADIUS protocol. B. The Cisco NAC Guest Server can be used in place of Cisco WCS Lobby Ambassador functionality for guest provisioning and reporting. The Cisco WCS is still needed for WLAN management.

C. The Cisco WLC acts as the guest accounts provisioning portal, and the Cisco NAC Guest Server acts as the captive portal capturing web requests from preassigned "guest ports" and requesting authentication. D. Guest accounts on the Cisco NAC Guest Server can be created using the Cisco WCS Lobby Ambassador feature. Correct Answer: B /Reference: : QUESTION 45 What is the default authentication protocol that is used for web authentication? A. MD5-CHAP B. CHAP C. PAP D. LEAP Correct Answer: C /Reference: : QUESTION 46 How many tunnels can a Cisco WLC v7.0 anchor? A. 63 B. 64 C. 71 D. 72 E. 253 F. 254 Correct Answer: C /Reference: : QUESTION 47 What does the eping mobility_peer_ip_address command do? A. It tests EoIP connectivity via port 97 though the management interface. B. It tests EoIP connectivity via port 97 though the AP manager interface. C. It tests UDP connectivity via port 16666 through the management interface. D. It tests UDP connectivity via port 16666 through the AP manager interface. Correct Answer: A

/Reference: : QUESTION 48 Which one of the options is related to U.S. Federal Trade Commission safeguard rules for financial institutions to protect customer information? A. ISO B. IEEE C. IETF D. Wi-Fi Alliance E. PCI F. HIPAA G. GLBA Correct Answer: G /Reference: : QUESTION 49 A network administrator is assigning a one-to-one association for VLAN to wireless WLAN or SSID. Given the implementation of a Cisco 2500 Series controller using v7.0, how many WLANs can be created? A. 8 B. 16 C. 32 D. 64 E. 128 F. 254 G. 512 Correct Answer: B /Reference: : QUESTION 50 Given a proper configuration of the Cisco WLC v7.0, what is the default username, password, and enable password to remotely access an associated AP? A. admin, admin, and Cisco B. admin, cisco, and Cisco C. none, cisco, and Cisco D. none, Cisco, and Cisco E. Cisco, Cisco, and Cisco F. lightweight APs do not allow remote access Correct Answer: E

/Reference: : QUESTION 51 Refer to the exhibit. "Pass Any Exam. Any Time." - www.actualtests.com 44 Cisco 642-737 Exam A WLAN with the SSID "Enterprise" is configured. Which rogue will be marked as malicious? A. a rogue with no clients, broadcasting the SSID "Enterprise" heard at -50dBm B. a rogue with two clients, broadcasting the SSID "Employee" heard at -50dBm C. a rogue with two clients, broadcasting the SSID "Enterprise" heard at -50dBm D. a rouge with two clients, broadcasting the SSID "Enterprise" heard at -80dBm Correct Answer: C /Reference: : QUESTION 52 Which two situations permit the Cisco WCS v7.0 to successfully trace a rogue to a switch port? (Choose two.) A. The rogue is broadcasting an infrastructure SSID. B. The rogue has a client that is associated. C. The wired MAC address of the rogue is equal to or +1/-1 of the wireless MAC address of the rogue. D. The rogue is on the same switch as a CAPWAP AP. E. The rogue has been identified using RLDP.

Correct Answer: BC /Reference: : QUESTION 53 Which two attacks represent a social engineering attack? (Choose two.) A. using AirMagnet Wi-Fi Analyzer to search for hidden SSIDs B. calling the IT helpdesk and asking for network information C. spoofing the MAC address of an employee device D. entering a business and posing as IT support staff Correct Answer: BD /Reference: : QUESTION 54 Which type of attack is a result of a WLAN being overwhelmed by 802.1X authentication requests? A. NetStumbler attack B. EAPOL flood signature C. management flood signatures D. broadcast deauthentication frame signatures E. NULL probe response signatures Correct Answer: B /Reference: : QUESTION 55 Which device performs the enforcement of posture assessment for a wireless client when implementing a NAC appliance solution? A. Cisco NAC Guest Server B. Cisco Secure Access Control System C. Cisco 802.1X supplicant D. Cisco NAC Appliance Agent E. Cisco NAC Appliance Manager F. Cisco NAC Appliance Server G. Cisco IPS Appliance Correct Answer: F /Reference:

: QUESTION 56 Which device provides IDS and IPS protection in a Cisco Unified Wireless Network against wireless clients with viruses and worms? A. Cisco NAC Guest Server B. Cisco Secure Access Control System C. Cisco WLC D. Cisco WCS E. Cisco NAC Appliance Manager F. Cisco NAC Appliance Server G. Cisco IPS Appliance Correct Answer: G /Reference: : QUESTION 57 Which protocol port(s) need open access for communication between the MSE and WLC? A. UDP 16666 and 16667 B. UDP 5247 and 5264 C. UDP 161 and 162 D. UDP 16113 E. TCP 16113 Correct Answer: E /Reference: : QUESTION 58 Which protocol port needs open access for the Cisco WLC v7.0 using an external AAA server for checking administrative privileges for menu access? A. UDP 1812 B. UDP 1813 C. UDP 1645 D. UDP 1646 E. TCP 49 F. TCP 443 Correct Answer: E /Reference: :

QUESTION 59 When deploying wips, which protocol is used to communicate between the Cisco WLC v7.0 and the MSE? A. SNMP B. HTTPS C. CAPWAP D. SOAP and XML E. NMSP Correct Answer: E /Reference: : QUESTION 60 DRAG DROP A. B. C. D. Correct Answer: /Reference:

: QUESTION 61 DRAG DROP "Pass Any Exam. Any Time." - www.actualtests.com 49 Cisco 642-737 Exam

A. B. C. D. Correct Answer: /Reference:

: QUESTION 62 DRAG DROP

A. B. C. D. Correct Answer: /Reference:

: QUESTION 63 DRAG DROP

A. B. C. D. Correct Answer: /Reference:

: QUESTION 64 DRAG DROP

A. B. C. D. Correct Answer: /Reference: :

http://www.gratisexam.com/

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback