Test your basic knowledge |

CCNP Wireless Security

Subjects : cisco, it-skills, ccnp
Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. How is IBN-VLAN Selection implemted in ACS






2. Methods for authenticating to NAC






3. Encryption algorithm used by Certificates






4. Briefly describe peap






5. Things to Enable in ACS (Global Authentication Page) for PEAP support






6. What is needed to use Locally Significat Certificates (LSC) when establishing tunnel from OEAP to WLC






7. 6 criteria types for rogue classification






8. What is the radius server override interface option under WLAN-->AAA?






9. 3 categories of segmented traffic






10. 3 modes of radius fallback






11. RADIUS UDP Ports






12. What are virtual domains used for in WCS






13. Ports to open on fw to allow foreign to anchor controller tunnel to be built






14. How fast is fast secure roaming






15. How long before an HREAP goes into disconnected/standalone mode






16. What is the IEEE Standards version of MFP






17. What is a mobility list used for






18. IAPP roaming protocol






19. Main elements of a NAC deployment






20. What must be configured the same for an HREAP not to disconnect clients when failing over (or back) to a WLC






21. Steps to auth with NAA w/ SSO






22. Vlan pooling






23. What is included in a Pairwise Transient Key (PTK)






24. How is IBN-QoS






25. What CCX version is required for CCKM






26. Eap process/messages






27. Switch global config to enable dot1x radius server






28. Is data encrypted over a capwap tunnel?






29. What must be configd on ACS to enable dot1x from switch






30. Enhanced Neighbor list






31. What protocol to WLCs use to communicate with IPS






32. What is 802.11w?






33. Steps to configure wlcs for guest wlan






34. What does Fast Secure Roaming use re: Keying






35. How does the Nac Appliance Agent (NAA) work cohesively with 802.1x






36. What kind of mgmt frames does client mfp protect






37. Difference between MFP-1 & MFP-2






38. What does Proactive Key Caching do






39. What is Ciscos gold confidence level deployment of wIPS aps in a walled environment






40. What is HREAP Local Auth limitation






41. Steps to posture assesment






42. Reason why you can NOT use WLC RADIUS server to auth. against OpenLDAP or Win-2003 (or later)






43. 802.11R






44. Peap fast reconnect






45. What is Conditional Web Redirect






46. Encryption types used by SNMPv3






47. Difference between mobility list and mobility group






48. What does a wired IPS do compared to the WLC IDS






49. Steps to roaming in 802.1R






50. NAC Deployment Types