Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What is the IEEE Standards version of MFP






2. RADIUS UDP Ports






3. What is a mobility list used for






4. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






5. How is IBN-QoS






6. Briefly describe eap-mschapv2






7. When submitting a CSR from ACS






8. Ports to open on fw to allow foreign to anchor controller tunnel to be built






9. What is the radius server override interface option under WLAN-->AAA?






10. What kind of local 802.1x auth. does HREAP support






11. How does client MFP work






12. NAC Deployment Types






13. Steps to setting up an out-of-band virtual gateway NAS setup






14. Enhanced Neighbor list






15. When PKC is used






16. 3 categories of segmented traffic






17. What does Proactive Key Caching do






18. Methods for authenticating to NAC






19. How is encryption established between OEAP & Anchor WLC






20. Whats added in CCXv5?






21. How to add IPS TLS info to WLC






22. What is the caveat to having redundant anchor controllers






23. When will a WLC use a Local EAP profile?






24. Vlan pooling






25. Steps to roaming in non802.1R






26. What is included in a Pairwise Transient Key (PTK)






27. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






28. Describe AP Assisted Roaming






29. How is IBN-VLAN Selection implemted in ACS






30. Is data encrypted over a capwap tunnel?






31. What part of an 802.11 Beacon contains the security mechanisms in use






32. Switch global config to enable dot1x radius server






33. Eap process/messages






34. Steps to config. .1x for AP to WLC connections






35. 2 different types of wIPS deployment






36. Steps to auth with NAA w/ SSO






37. What does Fast Secure Roaming use re: Keying






38. What is the WLAN-->Advanced--> DIagnostic Channel used for






39. 3 modes of radius fallback






40. Client Roaming Reasons






41. What must be configured for SSO authentication to work






42. What ports does OEAP use to connect to anchor WLC






43. 6 criteria types for rogue classification






44. What is used for HREAP Roaming re: keying






45. WLC Tacacs+ roles






46. What kind of mgmt frames does client mfp protect






47. Why add an IPS if WLCs already detect attacks.






48. Steps to roaming in 802.1R






49. Things to Enable in ACS (Global Authentication Page) for PEAP support






50. How does the Nac Appliance Agent (NAA) work cohesively with 802.1x