Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Difference between MFP-1 & MFP-2






2. What must be configured the same for an HREAP not to disconnect clients when failing over (or back) to a WLC






3. Peap fast reconnect






4. Things to Enable in ACS (Global Authentication Page) for PEAP support






5. AAA override






6. What is included in a Pairwise Transient Key (PTK)






7. Is data encrypted over a capwap tunnel?






8. Main elements of a NAC deployment






9. What does IBN allow you to assign






10. Steps to adding an IPS






11. Methods for authenticating to NAC






12. What ports does OEAP use to connect to anchor WLC






13. What is a mobility list used for






14. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






15. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






16. How does infrastructure MFP work






17. Briefly describe peap






18. What is the radius server override interface option under WLAN-->AAA?






19. What is 802.11w?






20. What must be configured for SSO authentication to work






21. What does Fast Secure Roaming use re: Keying






22. What protocol to WLCs use to communicate with IPS






23. WLC Tacacs+ roles






24. How long before an HREAP goes into disconnected/standalone mode






25. Why is fast secure roaming used






26. What kind of local 802.1x auth. does HREAP support






27. Whats in CCXv4?






28. When PKC is used






29. Why add an IPS if WLCs already detect attacks.






30. 6 criteria types for rogue classification






31. What are the 4 main components of NGS re: guests






32. Steps to auth with NAA w/ SSO






33. When will a WLC use a Local EAP profile?






34. 802.11R






35. Will foreign/anchor communication work through PAT?






36. Vlan pooling






37. What CCX version is required for CCKM






38. Protocols used in wIPS






39. Steps to setting up an out-of-band virtual gateway NAS setup






40. What does Proactive Key Caching do






41. Enhanced Neighbor list - E2E






42. What part of an 802.11 Beacon contains the security mechanisms in use






43. Whats added in CCXv5?






44. Enhanced Neighbor list






45. RADIUS UDP Ports






46. What is HREAP Local Auth limitation






47. How does CCKM simplify PMK Caching






48. How is IBN-QoS






49. 3 categories of segmented traffic






50. NAC Deployment Types