Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Main elements of a NAC deployment






2. Vlan pooling






3. Eap process/messages






4. 802.11R






5. How is IBN-VLAN Selection implemted in ACS






6. What does FIPS-2 require for WLC to RADIUS communications






7. How is OEAP encrypted






8. What are virtual domains used for in WCS






9. How to set up tacacs roles in ACS for WLC authorization






10. 2 different types of wIPS deployment






11. Enhanced Neighbor list






12. What are the 4 main components of NGS re: guests






13. What is HREAP Local Auth limitation






14. Directed Roam Request






15. WLC Tacacs+ roles






16. What kind of local 802.1x auth. does HREAP support






17. Steps to installing Server Cert into ACS






18. Briefly describe eap-mschapv2






19. What is included in a Pairwise Transient Key (PTK)






20. 3 categories of segmented traffic






21. Ports to open on fw to allow foreign to anchor controller tunnel to be built






22. What does Fast Secure Roaming use re: Keying






23. Steps to setting up an out-of-band virtual gateway NAS setup






24. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






25. Steps to auth with NAA w/ SSO






26. Steps to config. .1x for AP to WLC connections






27. Encryption types used by SNMPv3






28. What is the caveat to having redundant anchor controllers






29. What is Conditional Web Redirect






30. Steps to adding an IPS






31. What is a mobility list used for






32. Describe AP Assisted Roaming






33. How is the CAPWAP tunnel between AP & WLC encrypted






34. Switch global config to enable dot1x radius server






35. Methods for authenticating to NAC






36. What must be configured for SSO authentication to work






37. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






38. Difference between MFP-1 & MFP-2






39. Why add an IPS if WLCs already detect attacks.






40. Is data encrypted over a capwap tunnel?






41. When submitting a CSR from ACS






42. How is IBN-QoS






43. AAA override






44. How to add IPS TLS info to WLC






45. IAPP roaming protocol






46. Briefly describe peap






47. How does CCKM simplify PMK Caching






48. When will a WLC use a Local EAP profile?






49. What is the radius server override interface option under WLAN-->AAA?






50. NAC Deployment Types