Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. How is the CAPWAP tunnel between AP & WLC encrypted






2. How is IBN implemented on a WLAN






3. Steps to auth with NAA w/ SSO






4. NAC Deployment Types






5. What is the radius server override interface option under WLAN-->AAA?






6. Encryption algorithm used by Certificates






7. Briefly describe eap-tls






8. Steps to installing Server Cert into ACS






9. What does Fast Secure Roaming use re: Keying






10. Whats added in CCXv5?






11. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






12. What part of an 802.11 Beacon contains the security mechanisms in use






13. What triggers can initiate a WLC to request a client to roam






14. How fast is fast secure roaming






15. How to set up tacacs roles in ACS for WLC authorization






16. What is included in a Pairwise Transient Key (PTK)






17. Vlan pooling






18. What does a wired IPS do compared to the WLC IDS






19. How is IBN-VLAN Selection implemted in ACS






20. Regulatory Compliance Acronyms






21. What is the IEEE Standards version of MFP






22. What protocol to WLCs use to communicate with IPS






23. AAA override






24. How does the Nac Appliance Agent (NAA) work cohesively with 802.1x






25. What is a mobility list used for






26. What is NGS & whats it used for






27. Ports to open on fw to allow foreign to anchor controller tunnel to be built






28. Switchport config to enable dot1x on a port






29. Difference between mobility list and mobility group






30. When will a WLC use a Local EAP profile?






31. What is HREAP Local Auth limitation






32. What are virtual domains used for in WCS






33. What are the 4 main components of NGS re: guests






34. What does Proactive Key Caching do






35. What must be configured the same for an HREAP not to disconnect clients when failing over (or back) to a WLC






36. How is OEAP encrypted






37. Briefly describe peap






38. What must be configured for SSO authentication to work






39. What must be configd on ACS to enable dot1x from switch






40. Why is fast secure roaming used






41. How is encryption established between OEAP & Anchor WLC






42. Is data encrypted over a capwap tunnel?






43. Steps to configure wlcs for guest wlan






44. How long before an HREAP goes into disconnected/standalone mode






45. When PKC is used






46. How does client MFP work






47. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






48. Encryption types used by SNMPv3






49. What does FIPS-2 require for WLC to RADIUS communications






50. Steps to setting up an out-of-band virtual gateway NAS setup