Cisco 300-430 Practice Test - Questions Answers, Page 9
Question list
List of questions
Related questions
A wireless engineer must implement a corporate wireless network for a large company in the most efficient way possible. The wireless network must support 32 VLANs for 300 employees in different departments. Which solution must the engineer choose?
Configure a second WLC to support half of the APs in the deployment.
Configure one single SSID and implement Cisco ISE for VLAN assignment according to different user roles.
Configure different AP groups to support different VLANs, so that all of the WLANs can be broadcast on both radios.
Configure 16 WLANs to be broadcast on the 2.4-GHz band and 16 WLANs to be broadcast on the 5.0-GHz band.
Which feature on the Cisco Wireless LAN Controller must be present to support dynamic VLAN mapping?
FlexConnect ACL
VLAN name override
CCKM/OKC
AAA override
Which three properties are used for client profiling of wireless clients? (Choose three.)
HTTP user agent
DHCP
MAC OUI
hostname
OS version
IP address
Which command set configures a Cisco Catalyst 9800 Series Wireless Controller so that the client traffic enters the network at the AP switch port?
Option A
Option B
Option C
Option D
What is the default IEEE 802.1x AP authentication configuration on a Cisco Catalyst 9800 Series Wireless Controller?
EAP-PEAP with 802.1x port authentication
EAP-TLS with 802.1x port authentication
EAP-FAST with CAPWAP DTLS + port authentication
EAP-FAST with CAPWAP DTLS
An engineer must implement rogue containment for an SSID. What is the maximum number of APs that should be used for containment?
1
2
3
4
An engineer is following the proper upgrade path to upgrade a Cisco AireOS WLC from version 7.3 to 8.9. Which two ACLs for Cisco CWA must be configured when upgrading from the specified codes?
(Choose two.)
Permit 0.0.0.0 0.0.0.0 any DNS any
Permit 0.0.0.0 0.0.0.0 UDP DNS any
Permit 0.0.0.0 0.0.0.0 UDP any DNS
Permit any any any
Permit 0.0.0.0 0.0.0.0 UDP any any
CMX Facebook Wi-Fi allows access to the network before authentication. Which two elements are available? (Choose two.)
Allow HTTP traffic only before authentication and block all the traffic.
Allow all the traffic before authentication and intercept HTTPS only.
Allow HTTPs traffic only before authentication and block all other traffic.
Allow all the traffic before authentication and intercept HTTP only.
Allow SNMP traffic only before authentication and block all the traffic.
An engineer is implementing Cisco Identity-Based Networking on a Cisco AireOS controller. The engineer has two ACLs on the controller. The first ACL, named BASE_ACL, is applied to the corporate_clients interface on the WLC, which is used for all corporate clients. The second ACL, named HR_ACL, is referenced by ISE in the Human Resources group policy. What is the resulting ACL when a Human Resources user connects?
HR_ACL appended with BASE_ACL
HR_ACL only
BASE_ACL appended with HR_ACL
BASE_ACL only
Branch wireless users report that they can no longer access services from head office but can access services locally at the site. New wireless users can associate to the wireless while the WAN is down.
Which three elements (Cisco FlexConnect state, operation mode, and authentication method) are seen in this scenario? (Choose three.)
authentication-local/switch-local
WPA2 personal
authentication-central/switch-central
lightweight mode
standalone mode
WEB authentication
Question