CWNP CWSP-208 Exam Practice Test Instant Access

Question 1

Given: You must implement 7 APs for a branch office location in your organization. All APs will be autonomous and provide the same two SSIDs (CORP1879 and Guest).

Because each AP is managed directly through a web-based interface, what must be changed on every AP before enabling the WLANs to ensure proper staging procedures are followed?

AFragmentation threshold

BAdministrative password

COutput power

DCell radius

Answer : B

Question 2

What is the purpose of the Pairwise Transient Key (PTK) in IEEE 802.11 Authentication and Key Management?

AThe PTK is a type of master key used as an input to the GMK, which is used for encrypting multicast data frames.

BThe PTK contains keys that are used to encrypt unicast data frames that traverse the wireless medium.

CThe PTK is XOR'd with the PSK on the Authentication Server to create the AAA key.

DThe PTK is used to encrypt the Pairwise Master Key (PMK) for distribution to the 802.1X Authenticator prior to the 4-Way Handshake.

Answer : B

Question 3

You must locate non-compliant 802.11 devices. Which one of the following tools will you use and why?

AA spectrum analyzer, because it can show the energy footprint of a device using WPA differently from a device using WPA2.

BA spectrum analyzer, because it can decode the PHY preamble of a non-compliant device.

CA protocol analyzer, because it can be used to view the spectrum energy of non-compliant 802.11 devices, which is always different from compliant devices.

DA protocol analyzer, because it can be used to report on security settings and regulatory or rule compliance

Answer : D

Question 4

Given: A network security auditor is preparing to perform a comprehensive assessment of an 802.11ac network's security.

What task should be performed at the beginning of the audit to maximize the auditor's ability to expose network vulnerabilities?

AIdentify the IP subnet information for each network segment.

BIdentify the manufacturer of the wireless intrusion prevention system.

CIdentify the skill level of the wireless network security administrator(s).

DIdentify the manufacturer of the wireless infrastructure hardware.

EIdentify the wireless security solution(s) currently in use.

Answer : E

Question 5

What statement is true regarding the nonces (ANonce and SNonce) used in the IEEE 802.11 4 Way Handshake?

ABoth nonces are used by the Supplicant and Authenticator in the derivation of a single PTK.

BThe Supplicant uses the SNonce to derive its unique PTK and the Authenticator uses the ANonce to derive its unique PTK, but the nonces are not shared.

CNonces are sent in EAPoL frames to indicate to the receiver that the sending station has installed and validated the encryption keys.

DThe nonces are created by combining the MAC addresses of the Supplicant, Authenticator, and Authentication Server into a mixing algorithm.

Answer : A

Question 6

You have been recently hired as the wireless network administrator for an organization spread across seven locations. They have deployed more than 100 APs, but they have not been managed in either an automated or manual process for more than 18 months. Given this length of time, what is one of the first things you should evaluate from a security perspective?

AThe channel widths configured

BThe channels in use

CThe VLANs in use

DThe firmware revision

Answer : D

Question 7

Given: An 802.1X/EAP implementation includes an Active Directory domain controller running Windows Server 2012 and an AP from a major vendor. A Linux server is running RADIUS and it queries the domain controller for user credentials. A Windows client is accessing the network.

What device functions as the EAP Supplicant?

ALinux server

BWindows client

CAccess point

DWindows server

EAn unlisted switch

FAn unlisted WLAN controller

Answer : B

CWNP Certified Wireless Security Professional (CWSP) CWSP-208 Exam Practice Test