CWNP CWSP-208 Exam Practice Test Instant Access

Question 1

In what deployment scenarios would it be desirable to enable peer-to-peer traffic blocking?

AIn home networks in which file and printer sharing is enabled

BAt public hot-spots in which many clients use diverse applications

CIn corporate Voice over Wi-Fi networks with push-to-talk multicast capabilities

DIn university environments using multicast video training sourced from professor's laptops

Answer : B

Question 2

What are the three roles of the 802.1X framework, as defined by the 802.1X standard, that are performed by the client STA, the AP (or WLAN controller), and the RADIUS server? (Choose 3)

AEnrollee

BRegistrar

CAAA Server

DAuthentication Server

ESupplicant

FAuthenticator

GControl Point

Answer : D, E, F

Question 3

Given: You are using WEP as an encryption solution. You are using VLANs for network segregation.

Why can you not establish an RSNA?

ARSNA connections require TKIP or CCMP.

BRSNA connections require BIP and do not support TKIP, CCMP or WEP.

CRSNA connections require CCMP and do not support TKIP or WEP.

DRSNA connections do not work in conjunction with VLANs.

Answer : A

Question 4

When used as part of a WLAN authentication solution, what is the role of LDAP?

AA data retrieval protocol used by an authentication service such as RADIUS

BAn IEEE X.500 standard compliant database that participates in the 802.1X port-based access control process

CA SQL compliant authentication service capable of dynamic key generation and distribution

DA role-based access control protocol for filtering data to/from authenticated stations.

EAn Authentication Server (AS) that communicates directly with, and provides authentication for, the Supplicant.

Answer : A

Question 5

Given: A network security auditor is preparing to perform a comprehensive assessment of an 802.11ac network's security.

What task should be performed at the beginning of the audit to maximize the auditor's ability to expose network vulnerabilities?

AIdentify the IP subnet information for each network segment.

BIdentify the manufacturer of the wireless intrusion prevention system.

CIdentify the skill level of the wireless network security administrator(s).

DIdentify the manufacturer of the wireless infrastructure hardware.

EIdentify the wireless security solution(s) currently in use.

Answer : E

Question 6

Given: Your network includes a controller-based WLAN architecture with centralized data forwarding. The AP builds an encrypted tunnel to the WLAN controller. The WLAN controller is uplinked to the network via a trunked 1 Gbps Ethernet port supporting all necessary VLANs for management, control, and client traffic.

What processes can be used to force an authenticated WLAN client's data traffic into a specific VLAN as it exits the WLAN controller interface onto the wired uplink? (Choose 3)

AOn the Ethernet switch that connects to the AP, configure the switch port as an access port (not trunking) in the VLAN of supported clients.

BDuring 802.1X authentication, RADIUS sends a return list attribute to the WLAN controller assigning the user and all traffic to a specific VLAN.

CIn the WLAN controller's local user database, create a static username-to-VLAN mapping on the WLAN controller to direct data traffic from a specific user to a designated VLAN.

DConfigure the WLAN controller with static SSID-to-VLAN mappings; the user will be assigned to a VLAN according to the SSID being used.

Answer : B, C, D

Question 7

Given: XYZ Company has recently installed an 802.11ac WLAN. The company needs the ability to control access to network services, such as file shares, intranet web servers, and Internet access based on an employee's job responsibilities.

What WLAN security solution meets this requirement?

AAn autonomous AP system with MAC filters

BWPA2-Personal with support for LDAP queries

CA VPN server with multiple DHCP scopes

DA WLAN controller with RBAC features

EA WLAN router with wireless VLAN support

Answer : D

CWNP CWSP-208 Certified Wireless Security Professional (CWSP) Exam Practice Test