Home / Cisco / 300-430

Cisco 300-430 Practice Test - Questions Answers, Page 14

Question list

List of questions

Question 131

(0)

An engineer is implementing RADIUS to restrict administrative control to the network with the WLC management IP address of 192.168.1.10 and an AP subnet of 192.168.2.0/24. Which entry does the engin

Question 132

(0)

A customer requires wireless traffic from the branch to be routed through the firewall at corporate headquarters. A RADIUS server is in each branch location. Which Cisco FlexConnect configuration mu

Question 133

(0)

Refer to the exhibit. An engineer must restrict some subnets to have access to the WLC. When the CPU ACL function is enabled, no ACLs in the drop-down list are seen. What is the cause of the prob

Question 134

(0)

An engineer configures the wireless LAN controller to perform 802.1x user authentication. Which configuration must be enabled to ensure that client devices can connect to the wireless, even when WLC

Question 135

(0)

An IT team is growing quickly and needs a solution for management device access. The solution must authenticate users from an external repository instead of the current local on the WLC, and i

Question 136

(0)

Refer to the exhibit. An engineer must connect a fork lift via a WGB to a wireless network and must authenticate the WGB certificate against the RADIUS server. Which three steps are required for

Question 137

(0)

During the EAP process and specifically related to the client authentication session, which encrypted key is sent from the RADIUS server to the access point?

Question 138

(0)

A network is set up to support wired and wireless clients. Both types must authenticate using 802.1X before connecting to the network. Different types of client authentication must be separated on a

Question 139

(0)

An engineer is troubleshooting a Cisco CMX high-availability deployment and notices that the primary and backup Cisco CMX servers are both considered primary. Which command must the engineer run on

Question 140

(0)

A network administrator managing a Cisco Catalyst 9800-80 WLC must place all iOS connected devices to the guest SSID on VLAN 101. The rest of the clients must connect on VLAN 102 distribute load acr

Related questions

A network engineer needs to configure multicast in the network. The implementation will use multiple multicast groups and PIM routers. Which address provides automatic discovery of the best RP for each multicast group?

Refer to the exhibit. A network architect configured the Cisco Catalyst 9800 Series Controller to find out information on client types in the wireless network. RADIUS profiling is enabled so that the controller forwards the information about clients to a Cisco ISE server through vendor-specific RADIUS attributes. The ISE server is not profiling any data from the controller. Which configuration must be added in the blank in the code to accomplish the profiling on the Cisco 9800 Series controller?

DRAG DROP A wireless engineer wants to schedule monthly security reports in Cisco Prime infrastructure. Drag and drop the report the from the left onto the expected results when the report is generated on the right.

A wireless engineer must implement a corporate wireless network for a large company in the most efficient way possible. The wireless network must support 32 VLANs for 300 employees in different departments. Which solution must the engineer choose?

Refer to the exhibit. An engineer needs to configure location services in an office. The requirement is to use FastLocate and achieve higher locations refresh rates. Which location-based technique should be implemented?

Which two restrictions are in place with regards to configuring mDNS? (Choose two.)

A customer is deploying local web authentication. Which software application must be implemented on Cisco ISE to utilize as a directory service?

An IT administrator deployed an OEAP to the home of a remote user, but the OEAP cannot reach the WLC. Which two configuration settings must be completed before an OEAP is deployed successfully? (Choose two.)

A wireless network has been implemented to enable multicast video to be streamed reliably over the wireless link to the wireless users. After a client reports that the video is unable to stream, the administrator determines that the client is connecting at a data rate of 12 Mbps and is trying to stream to a valid multicast address on the network. Which two actions must be applied? (Choose two.)

What two actions must be taken by an engineer configuring wireless Identity-Based Networking for a WLAN to enable VLAN tagging? (Choose two.)

Question 131

An engineer is implementing RADIUS to restrict administrative control to the network with the WLC management IP address of 192.168.1.10 and an AP subnet of 192.168.2.0/24. Which entry does the engineer define in the RADIUS server?

administrative access defined on the WLC and the network range 192.168.2.0/255.255.254.0

NAS entry of the virtual interface and the network range 192.168.2.0/255.255.255.0

shared secret defined on the WLC and the network range 192.168.1.0/255.255.254.0

WLC roles for commands and the network range 192.168.1.0/255.255.255.0

Show Answer Comment (0)

Question 132

A customer requires wireless traffic from the branch to be routed through the firewall at corporate headquarters. A RADIUS server is in each branch location. Which Cisco FlexConnect configuration must be used?

central authentication and local switching

central authentication and central switching

local authentication and local switching

local authentication and central switching

Show Answer Comment (0)

Question 133

Refer to the exhibit.

An engineer must restrict some subnets to have access to the WLC. When the CPU ACL function is enabled, no ACLs in the drop-down list are seen. What is the cause of the problem?

The ACL does not have a rule that is specified to the Management interface.

No ACLs have been created under the Access Control List tab.

When the ACL is created, it must be specified that it is a CPU ACL.

This configuration must be performed through the CLI and not though the web GUI.

Show Answer Comment (0)

Question 134

An engineer configures the wireless LAN controller to perform 802.1x user authentication. Which configuration must be enabled to ensure that client devices can connect to the wireless, even when WLC cannot communicate with the RADIUS?

pre-authentication

local EAP

authentication caching

Cisco Centralized Key Management

Show Answer Comment (0)

Question 135

An IT team is growing quickly and needs a solution for management device access. The solution must authenticate users from an external repository instead of the current local on the WLC, and it must also identify the user and determine what level of access users should have. Which protocol do you recommend to achieve these goals?

network policy server

RADIUS

TACACS+

LDAP

Show Answer Comment (0)

Question 136

Refer to the exhibit.

An engineer must connect a fork lift via a WGB to a wireless network and must authenticate the WGB certificate against the RADIUS server. Which three steps are required for this configuration?

(Choose three.)

Configure the certificate, WLAN, and radio interface on WGB.

Configure the certificate on the WLC.

Configure WLAN to authenticate using ISE.

Configure the access point with the root certificate from ISE.

Configure WGB as a network device in ISE.

Configure a policy on ISE to allow devices to connect that validate the certificate.

Show Answer Comment (0)

Question 137

During the EAP process and specifically related to the client authentication session, which encrypted key is sent from the RADIUS server to the access point?

WPA key

session key

encryption key

shared-secret key

Show Answer Comment (0)

Question 138

A network is set up to support wired and wireless clients. Both types must authenticate using 802.1X before connecting to the network. Different types of client authentication must be separated on a Cisco ISE deployment. Which two configuration items achieve this task? (Choose two.)

device profiles

policy sets

separate networks

policy groups

policy results

Show Answer Comment (0)

Question 139

An engineer is troubleshooting a Cisco CMX high-availability deployment and notices that the primary and backup Cisco CMX servers are both considered primary. Which command must the engineer run on the backup server?

cmxha convert backup

cmxha backup convert

cmxha secondary convert

cmxha convert secondary

Show Answer Comment (0)

Question 140

A network administrator managing a Cisco Catalyst 9800-80 WLC must place all iOS connected devices to the guest SSID on VLAN 101. The rest of the clients must connect on VLAN 102 distribute load across subnets. To achieve this configuration, the administrator configures a local policy on the WLC. Which two configurations are required? (Choose two.)

Assign a policy map under global security policy settings.

Add local profiling policy under global security policy settings.

Create a service template.

Allow HTTP and DHCP profiling under policy map.

Enable device classification on global wireless settings.

Show Answer Comment (0)

Total 216 questions