Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What does FIPS-2 require for WLC to RADIUS communications






2. Encryption types used by SNMPv3






3. How is IBN-VLAN Selection implemted in ACS






4. What does a wired IPS do compared to the WLC IDS






5. 2 different types of wIPS deployment






6. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






7. What does IBN allow you to assign






8. Client Roaming Reasons






9. What protocol to WLCs use to communicate with IPS






10. Switchport config to enable dot1x on a port






11. How fast is fast secure roaming






12. Protocols used in wIPS






13. Switch global config to enable dot1x radius server






14. Ports to open on fw to allow foreign to anchor controller tunnel to be built






15. 6 criteria types for rogue classification






16. What is 802.11w?






17. What kind of mgmt frames does client mfp protect






18. What must be configured for SSO authentication to work






19. What CCX version is required for CCKM






20. Why is fast secure roaming used






21. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






22. Whats in CCXv4?






23. How does infrastructure MFP work






24. What is HREAP Local Auth limitation






25. 3 modes of radius fallback






26. What must be configd on ACS to enable dot1x from switch






27. What is the caveat to having redundant anchor controllers






28. How to set up tacacs roles in ACS for WLC authorization






29. How long before an HREAP goes into disconnected/standalone mode






30. What are the 4 main components of NGS re: guests






31. Why add an IPS if WLCs already detect attacks.






32. Steps to configure wlcs for guest wlan






33. Whats added in CCXv5?






34. Steps to roaming in 802.1R






35. What ports does OEAP use to connect to anchor WLC






36. WLC Tacacs+ roles






37. Things to Enable in ACS (Global Authentication Page) for PEAP support






38. Enhanced Neighbor list - E2E






39. Main elements of a NAC deployment






40. What are mping and eping used for from the wlc cli






41. Briefly describe eap-mschapv2






42. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






43. When will a WLC use a Local EAP profile?






44. AAA override






45. Steps to setting up out-of-band virtual gateway setup on the NAS & NAM






46. What triggers can initiate a WLC to request a client to roam






47. Eap process/messages






48. Steps to adding an IPS






49. Describe AP Assisted Roaming






50. How is the CAPWAP tunnel between AP & WLC encrypted