QUESTION 41
Employees are allowed to starting bringing their own laptops to work. Which option can help provide a persistent user device check against unexpected issues of security risk application and lack of appropriate patches or updates inclusive of registry keys?
|
A. |
Cisco NAC Server |
|
B. |
Cisco NAC Guest Server |
|
C. |
Cisco NAC Manager |
|
D. |
Cisco NAC Windows Agent |
|
E. |
Cisco NAC Web Agent |
|
F. |
Cisco ACS |
Answer: D
QUESTION 42
Which device provides IDS and IPS protection in a Cisco Unified Wireless Network against wireless clients with viruses and worms?
|
A. |
Cisco NAC Guest Server |
|
B. |
Cisco Secure Access Control System |
|
C. |
Cisco WLC |
|
D. |
Cisco WCS |
|
E. |
Cisco NAC Appliance Manager |
|
F. |
Cisco NAC Appliance Server |
|
G. |
Cisco IPS Appliance |
Answer: G
QUESTION 43
Which key is used to encrypt unicast traffic between the supplicant and the AP after EAP authentication has completed?
|
A. |
PMK |
|
B. |
GTK |
|
C. |
PTK |
|
D. |
OKC |
|
E. |
PSK |
Answer: C
QUESTION 44
The NetStumbler tool is an example of which wireless attack type?
|
A. |
denial of service |
|
B. |
information gathering |
|
C. |
hijacking |
|
D. |
eavesdropping |
Answer: B
QUESTION 45
IPS appliance traffic monitoring has been configured in a Cisco WLC v7.0 with default parameters. Which statement correctly describes the results when malicious traffic is detected from a wireless client?
|
A. |
The WLC immediately notifies the IPS appliance. |
|
B. |
The IPS appliance immediately notifies the WLC. |
|
C. |
The WLC polls the IPS for the status every 60 seconds. |
|
D. |
The IPS initiates updates to the WLC every 60 seconds. |
Answer: C
QUESTION 46
Which two descriptions of mpings and epings are true? (Choose two.)
|
A. |
mpings run over UDP port 16666. |
|
B. |
mpings run over UDP port 16667, and epings run over port 16666. |
|
C. |
epings run over EoIP. |
|
D. |
mpings test mobility data packet reachability, and epings test mobility control packet reachability. |
|
E. |
mpings run over the management interface, and epings run over the virtual interface. |
|
F. |
mpings and epings are useful tools for troubleshooting WLC-to-AP communications. |
Answer: AC
QUESTION 47
DRAG DROP
Answer:
|
A. |
|
|
B. |
|
|
C. |
|
|
D. |
|
Answer:
QUESTION 48
Which three of the items listed are required configuration parameters for the WLC to enable NAC out-of-band single sign-on when implementing NAC appliances? (Choose three.)
|
A. |
EAP authentication |
|
B. |
web authentication |
|
C. |
SNMP |
|
D. |
RADIUS accounting |
|
E. |
WLAN > SNMP NAC enabled |
|
F. |
WLAN > RADIUS NAC enabled |
Answer: CDE
QUESTION 49
When deploying wIPS, which protocol is used to communicate between the Cisco WLC v7.0 and the MSE?
|
A. |
SNMP |
|
B. |
HTTPS |
|
C. |
CAPWAP |
|
D. |
SOAP and XML |
|
E. |
NMSP |
Answer: E
QUESTION 50
Which two options are supported when deploying wireless NAC out-of-band implementations? (Choose two.)
|
A. |
Cisco NAS in virtual gateway mode |
|
B. |
WLANs with allow AAA override enabled |
|
C. |
Cisco NAC Guest Server integration with the Cisco NAM |
|
D. |
dynamic VLAN mappings on the Cisco NAS, which is based on the returned RADIUS attributes from the Cisco Secure ACS |
|
E. |
autonomous APs |
Answer: AC
Free VCE & PDF File for Cisco 642-737 Real Exam
Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …