Dumps4cert.com : Latest Dumps with PDF and VCE Files
2018 Aug Cisco Official New Released 642-737
100% Free Download! 100% Pass Guaranteed!
Implementing Advanced Cisco Unified Wireless Security v2.0
Question No: 51
Which option verifies that a wireless client has authenticated to a WLAN when performing NAC using the Cisco NAC Appliance Manager and Server?
-
Cisco CAM OOB Management gt; Devices gt; Discovered Clients
-
Cisco CAS OOB Management gt; Devices gt; Discovered Clients
-
Cisco CAM Monitor gt; View Online Users
-
Cisco CAS Monitor gt; View Online Users
Answer: C
Question No: 52
An engineer is troubleshooting the authentication interaction between a WLAN controller and the authentication server. Which two debug commands should be utilized? (Choose two.)
-
debug client lt;MACAddressgt;
-
debug mobility handoff enable
-
debug aaa all enable
-
debug pem state
-
debug locp event enable
Answer: A,C
Question No: 53
Which three WLAN polices can be controlled by using the Cisco IBNS on the Cisco WLC and Cisco Secure ACS? (Choose three.)
-
QoS setting
-
VLAN
-
EAP type
-
ACL
-
authentication priority order
-
NAC state
Answer: A,B,D
Question No: 54
An engineer has configured a Cisco NAC for wireless OOB virtual gateway mode. Which three steps are part of the authentication flow process? (Choose three.)
-
The Cisco CAS assigns an IP address from the access VLAN.
-
The Cisco CAS bridges the client from its untrusted interface to its trusted interface.
-
The Cisco WLC switches the client IP address from quarantine VLAN to the access VLAN.
-
The Cisco NAC Appliance performs posture assessment and remediation.
-
The Cisco CAS forwards packets arriving on quarantine VLAN and forwards them out the access VLAN by swapping VLAN tag information.
-
The mapping rule on the Cisco NAC forward the packets on the access VLAN
Answer: A,C,D
Question No: 55 DRAG DROP
Answer:
Question No: 56
An engineer configures the wireless LAN controller to perform 802.1x user authentication. Which option must be enabled to ensure that client devices can connect to the wireless,
even when WLC cannot communicate with the RADIUS?
-
local EAP
-
Cisco Centralized Key Management
-
authentication caching
-
pre-authentication
Answer: A
Question No: 57
Wireless NAC single sign-on uses which type of RADIUS records to notify the Cisco NAC Appliance Manager about the authenticated wireless clients?
-
accounting records
-
authentication records
-
authentication and accounting records
-
preauthentication records
Answer: A
Question No: 58
An engineer needs to block SSH traffic going to the WLC, which does not originate on the management interface. Where should the ACL be applied to accomplish this with the least configuration?
-
CPU
-
Management interface
-
WLAN interfaces
-
SSID
Answer: A
Question No: 59
Clients are continually bouncing between APs when a client is on or near the border of two
APs. What RF parameter should be adjusted?
-
Minimum RSSI
-
Hysteresis
-
Adaptive Scan Threshold
-
Transition Time
Answer: B
Question No: 60
When configuring guest WLAN access, which two statements are true? (Choose two.)
-
The SSID that is defined for the guest WLAN on the foreign controllers must be the same as that defined on the anchor controller.
-
The foreign controllers must be defined with an ingress interface and an egress interface in the guest WLAN.
-
The foreign and anchor controllers must be configured in a mobility group for the foreign controllers to be able to initiate EoIP tunnels to one or more anchor controllers.
-
The mobility domain name of the anchor controller should be the same as what is configured for the foreign controllers.
Answer: A,C
100% Dumps4cert Free Download!
–642-737 PDF
100% Dumps4cert Pass Guaranteed!
–642-737 Dumps
| Dumps4cert | ExamCollection | Testking | |
|---|---|---|---|
| Lowest Price Guarantee | Yes | No | No |
| Up-to-Dated | Yes | No | No |
| Real Questions | Yes | No | No |
| Explanation | Yes | No | No |
| PDF VCE | Yes | No | No |
| Free VCE Simulator | Yes | No | No |
| Instant Download | Yes | No | No |