Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Ports to open on fw to allow foreign to anchor controller tunnel to be built






2. What does a wired IPS do compared to the WLC IDS






3. What part of an 802.11 Beacon contains the security mechanisms in use






4. What ports does OEAP use to connect to anchor WLC






5. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






6. 3 modes of radius fallback






7. Encryption algorithm used by Certificates






8. How is encryption established between OEAP & Anchor WLC






9. Briefly describe eap-mschapv2






10. Eap process/messages






11. What does IBN allow you to assign






12. How does the Nac Appliance Agent (NAA) work cohesively with 802.1x






13. What does Fast Secure Roaming use re: Keying






14. What must be configd on ACS to enable dot1x from switch






15. Switch global config to enable dot1x radius server






16. Describe AP Assisted Roaming






17. Encryption types used by SNMPv3






18. Client Roaming Reasons






19. Is data encrypted over a capwap tunnel?






20. What does FIPS-2 require for WLC to RADIUS communications






21. Authentication types used by SNMPv3






22. Enhanced Neighbor list






23. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






24. How does infrastructure MFP work






25. Regulatory Compliance Acronyms






26. Why is fast secure roaming used






27. Things to Enable in ACS (Global Authentication Page) for PEAP support






28. Methods for authenticating to NAC






29. What kind of mgmt frames does client mfp protect






30. Whats added in CCXv5?






31. What is NGS & whats it used for






32. Will foreign/anchor communication work through PAT?






33. 2 different types of wIPS deployment






34. Steps to setting up an out-of-band virtual gateway NAS setup






35. Steps to auth with NAA w/ SSO






36. Steps to configure wlcs for guest wlan






37. How is IBN implemented on a WLAN






38. What is the WLAN-->Advanced--> DIagnostic Channel used for






39. AAA override






40. Steps to roaming in non802.1R






41. Steps to adding an IPS






42. Briefly describe eap-tls






43. How to add IPS TLS info to WLC






44. How does CCKM simplify PMK Caching






45. Directed Roam Request






46. What is HREAP Local Auth limitation






47. What is included in a Pairwise Transient Key (PTK)






48. How is the CAPWAP tunnel between AP & WLC encrypted






49. IAPP roaming protocol






50. Steps to roaming in 802.1R