Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What must be configured the same for an HREAP not to disconnect clients when failing over (or back) to a WLC






2. How does client MFP work






3. How does CCKM simplify PMK Caching






4. Steps to installing Server Cert into ACS






5. How to add IPS TLS info to WLC






6. Steps to posture assesment






7. Encryption algorithm used by Certificates






8. What is a mobility list used for






9. Main elements of a NAC deployment






10. Steps to setting up an out-of-band virtual gateway NAS setup






11. What must be configd on ACS to enable dot1x from switch






12. What is used for HREAP Roaming re: keying






13. What kind of local 802.1x auth. does HREAP support






14. 3 modes of radius fallback






15. Steps to roaming in 802.1R






16. Eap process/messages






17. How is OEAP encrypted






18. What is included in a Pairwise Transient Key (PTK)






19. What are mping and eping used for from the wlc cli






20. Encryption types used by SNMPv3






21. Describe AP Assisted Roaming






22. When submitting a CSR from ACS






23. Steps to config. .1x for AP to WLC connections






24. What is the caveat to having redundant anchor controllers






25. What are the 4 main components of NGS re: guests






26. Steps to setting up out-of-band virtual gateway setup on the NAS & NAM






27. 802.11R






28. How is encryption established between OEAP & Anchor WLC






29. Briefly describe eap-tls






30. Enhanced Neighbor list - E2E






31. What is the IEEE Standards version of MFP






32. Is data encrypted over a capwap tunnel?






33. Difference between MFP-1 & MFP-2






34. Steps to adding an IPS






35. 3 categories of segmented traffic






36. What kind of mgmt frames does client mfp protect






37. How is the CAPWAP tunnel between AP & WLC encrypted






38. How does the Nac Appliance Agent (NAA) work cohesively with 802.1x






39. WLC Tacacs+ roles






40. Peap fast reconnect






41. What ports does OEAP use to connect to anchor WLC






42. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






43. Protocols used in wIPS






44. Switchport config to enable dot1x on a port






45. What is Conditional Web Redirect






46. What must be configured for SSO authentication to work






47. What is the radius server override interface option under WLAN-->AAA?






48. How is IBN-VLAN Selection implemted in ACS






49. How is IBN-QoS






50. What is HREAP Local Auth limitation