Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. When submitting a CSR from ACS






2. How long before an HREAP goes into disconnected/standalone mode






3. Why add an IPS if WLCs already detect attacks.






4. Steps to setting up an out-of-band virtual gateway NAS setup






5. Encryption algorithm used by Certificates






6. How fast is fast secure roaming






7. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






8. What does Proactive Key Caching do






9. How is IBN implemented on a WLAN






10. How is IBN-VLAN Selection implemted in ACS






11. AAA override






12. What does IBN allow you to assign






13. Difference between MFP-1 & MFP-2






14. What triggers can initiate a WLC to request a client to roam






15. What is NGS & whats it used for






16. Switchport config to enable dot1x on a port






17. Enhanced Neighbor list - E2E






18. Steps to roaming in 802.1R






19. Steps to posture assesment






20. Briefly describe eap-tls






21. What is HREAP Local Auth limitation






22. How is IBN-QoS






23. How is the CAPWAP tunnel between AP & WLC encrypted






24. Difference between mobility list and mobility group






25. Steps to auth with NAA w/ SSO






26. Is data encrypted over a capwap tunnel?






27. Why is fast secure roaming used






28. What must be configured the same for an HREAP not to disconnect clients when failing over (or back) to a WLC






29. IAPP roaming protocol






30. Whats in CCXv4?






31. What are virtual domains used for in WCS






32. What kind of local 802.1x auth. does HREAP support






33. What kind of mgmt frames does client mfp protect






34. What must be configd on ACS to enable dot1x from switch






35. Directed Roam Request






36. Things to Enable in ACS (Global Authentication Page) for PEAP support






37. How is encryption established between OEAP & Anchor WLC






38. Regulatory Compliance Acronyms






39. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






40. Steps to installing Server Cert into ACS






41. 6 criteria types for rogue classification






42. When will a WLC use a Local EAP profile?






43. What is the WLAN-->Advanced--> DIagnostic Channel used for






44. How to set up tacacs roles in ACS for WLC authorization






45. Encryption types used by SNMPv3






46. Ports to open on fw to allow foreign to anchor controller tunnel to be built






47. 3 modes of radius fallback






48. Switch global config to enable dot1x radius server






49. RADIUS UDP Ports






50. What is 802.11w?