Scribd
Upload
36 views21 pages

Number: 300-430 Passing Score: 825 Time Limit: 140 Min File Version: 1.0

Uploaded by

juan carlos alvarez rojas

This document provides information about the CCNP(300-430)ENWLSI exam, including the exam number, passing score, time limit, and file version. It also provides links to discussion groups and forums for exam preparation resources. The document lists 20 exam questions related to implementing Cisco enterprise wireless networks.

Copyright:

© All Rights Reserved
Download as PDF, TXT or read online from Scribd
Download as pdf or txt

Number: 300-430 Passing Score: 825 Time Limit: 140 Min File Version: 1.0

Uploaded by

juan carlos alvarez rojas
36 views21 pages
This document provides information about the CCNP(300-430)ENWLSI exam, including the exam number, passing score, time limit, and file version. It also provides links to discussion groups and forums for exam preparation resources. The document lists 20 exam questions related to implementing Cisco enterprise wireless networks.

Original Title

4_6019527550177380394

Copyright

© © All Rights Reserved

Available Formats

PDF, TXT or read online from Scribd

Did you find this document useful?

Is this content inappropriate?

This document provides information about the CCNP(300-430)ENWLSI exam, including the exam number, passing score, time limit, and file version. It also provides links to discussion groups and forums for exam preparation resources. The document lists 20 exam questions related to implementing Cisco enterprise wireless networks.

Copyright:

© All Rights Reserved
Download as PDF, TXT or read online from Scribd
Download as pdf or txt
36 views21 pages

Number: 300-430 Passing Score: 825 Time Limit: 140 Min File Version: 1.0

Uploaded by

juan carlos alvarez rojas
This document provides information about the CCNP(300-430)ENWLSI exam, including the exam number, passing score, time limit, and file version. It also provides links to discussion groups and forums for exam preparation resources. The document lists 20 exam questions related to implementing Cisco enterprise wireless networks.

Copyright:

© All Rights Reserved
Download as PDF, TXT or read online from Scribd
Download as pdf or txt
You are on page 1/ 21

CCNP(300-430)ENWLSI题库(2020.04.

29)

Number: 300-430
Passing Score: 825
Time Limit: 140 min
File Version: 1.0

CCNP(300-430)ENWLSI题库(2020.04.29)
Implementing Cisco Enterprise Wireless Networks
CCNP题库战报QQ交流群:138131305
CCNP最新题库战报地址:http://bbs.hh010.com/forum-263-1.htm
下载官方正版题库、看最新考试战报,请随时关注 鸿鹄论坛 http://bbs.hh010.com
思科华为考试报名全国优惠,报名请联系鸿鹄全国区客服
QQ 613523101
QQ 613523103
QQ 613523105
QQ 613523107
QQ 613523108
QQ 613523109
鸿鹄论坛官方淘宝店铺:http://hh010.taobao.com/
鸿鹄论坛官方微信公众号:
Exam A

QUESTION 1
A wireless engineer must implement a corporate wireless network for a large company in the most efficient way possible. The wireless network must support 32 VLANs for 300 employees in different departments. Which solution must the
engineer choose?

A. Configure a second WLC to support half of the APs in the deployment.


B. Configure one single SSID and implement Cisco ISE for VLAN assignment according to different user roles.
C. Configure different AP groups to support different VLANs, so that all of the WLANs can be broadcast on both radios.
D. Configure 16 WLANs to be broadcast on the 2.4-GHz band and 16 WLANs to be broadcast on the 5.0-GHz band.

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 2
A corporation has recently implemented a BYOD policy at their HQ. Which two risks should the security director be concerned about? (Choose two.)

A. network analyzers
B. malware
C. lost and stolen devices
D. keyloggers
E. unauthorized users

Correct Answer: BC
Section: (none)
Explanation

Explanation/Reference:

QUESTION 3 Which two restrictions are in place with regards to configuring mDNS?
(Choose two.)

A. mDNS uses only UDP port 5436 as a destination port.


B. mDNS cannot use UDP port 5353 as the destination port.
C. mDNS is not supported on FlexConnect APs with a locally switched WLAN.
D. Controller software must be newer than 7.0.6+.
E. mDNS is not supported over IPv6.

Correct Answer: CD
Section: (none)
Explanation

Explanation/Reference:

QUESTION 4
An engineer configures the wireless LAN controller to perform 802.1x user authentication. Which configuration must be enabled to ensure that client devices can connect to the wireless, even when WLC cannot communicate with the
RADIUS?

A. pre-authentication
B. local EAP
C. authentication caching
D. Cisco Centralized Key Management
Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 5 Which QoS level is recommended for


guest services?

A. gold
B. bronze
C. platinum
D. silver

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 6 Which feature on the Cisco Wireless LAN Controller must be present to support dynamic
VLAN mapping?

A. FlexConnect ACL
B. VLAN name override
C. CCKM/OKC
D. AAA override

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 7 Which two statements about the requirements for a Cisco Hyperlocation deployment are true?
(Choose two.)

A. After enabling Cisco Hyperlocation on Cisco CMX, the APs and the wireless LAN controller must be restarted.
B. NTP can be configured, but that is not recommended.
C. The Cisco Hyperlocation feature must be enabled on the wireless LAN controller and Cisco CMX.
D. The Cisco Hyperlocation feature must be enabled only on the wireless LAN controller.
E. If the Cisco CMX server is a VM, a high-end VM is needed for Cisco Hyperlocation deployments.

Correct Answer: AC
Section: (none)
Explanation

Explanation/Reference:

QUESTION 8
An engineer must use Cisco AVC on a Cisco WLC to prioritize Cisco IP cameras that use the wireless network. Which element do you configure in a rule?

A. permit-ACL
B. WMM required
C. mark
D. rate-limit

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 9
An engineer wants to configure WebEx to adjust the precedence and override the QoS profile on the WLAN. Which configuration is needed to complete this task?

A. Change the WLAN reserved bandwidth for WebEx


B. Create an AVC profile for WebEx
C. Create an ACL for WebEx
D. Change the AVC application WebEx-app-sharing to mark

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 10 Which three properties are used for client profiling of wireless clients?
(Choose three.)

A. HTTP user agent


B. DHCP
C. MAC OUI
D. hostname
E. OS version
F. IP address

Correct Answer: ABC


Section: (none)
Explanation

Explanation/Reference:

QUESTION 11
Which command set configures a Cisco Catalyst 9800 Series Wireless Controller so that the client traffic enters the network at the AP switch port? A.
B.

C.

D.

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 12 What is the difference between PIM sparse mode and PIM
dense mode?

A. Sparse mode supports only one switch. Dense mode supports multiswitch networks.
B. Sparse mode floods. Dense mode uses distribution trees.C. Sparse mode uses distribution trees. Dense mode floods.
D. Sparse mode supports multiswitch networks. Dense mode supports only one switch.

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 13
Refer to the exhibit. Which two items must be supported on the VoWLAN phones to take full advantage of this WLAN configuration? (Choose two.)

A. TSPEC
B. SIFS
C. 802.11e
D. WMM
E. APSD

Correct Answer: CD
Section: (none)
Explanation

Explanation/Reference:

QUESTION 14
A user is trying to connect to a wireless network that is configured for WPA2-Enterprise security using a corporate laptop. The CA certificate for the authentication server has been installed on the Trusted Root Certification Authorities store on
the laptop. The user has been prompted to enter the credentials multiple times, but the authentication has not succeeded. What is causing the issue?

A. There is an IEEE invalid 802.1X authentication policy on the authentication server.


B. The user Active Directory account is locked out after several failed attempts.
C. There is an invalid 802.1X authentication policy on the authenticator.
D. The laptop has not received a valid IP address from the wireless controller.

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 15 A new MSE with wIPS service has been installed and no alarm information appears to be reaching the MSE from controllers. Which protocol must be allowed to reach the MSE from
the controllers?

A. SOAP/XML
B. NMSP
C. CAPWAP
D. SNMP

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 16 An engineer completed the basic installation for two Cisco CMX servers and is in the process of configuring high availability, but it fails. Which two statements about the root of the issue are true?
(Choose two.)

A. The Cisco CMX instances are installed in the same subnet.


B. The types of the primary and secondary Cisco CMX installations differ.
C. The delay between the primary and secondary instance is 200 ms.
D. The sizes of the primary and secondary Cisco CMX installations differ.
E. Both Cisco CMX installations are virtual.

Correct Answer: BD
Section: (none)
Explanation

Explanation/Reference:

QUESTION 17
An engineer wants the wireless voice traffic class of service to be used to determine the queue order for packets received, and then have the differentiated services code point set to match when it is resent to another port on the switch. Which
configuration is required in the network?

A. Platinum QoS configured on the WLAN


B. WMM set to required on the WLAN
C. msl qos trust dscp configured on the controller switch port
D. msl qos trust cos configured on the controller switch port

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 18 For security purposes, an engineer enables CPU ACL and chooses an ACL on the Security > Access Control Lists > CPU Access Control Lists menu. Which kind of traffic does this change apply to, as soon as the
change is made?

A. wireless traffic only


B. wired traffic only
C. VPN traffic
D. wireless and wired traffic

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 19
An engineer must implement Cisco Identity-Based Networking Services at a remote site using ISE to dynamically assign groups of users to specific IP subnets. If the subnet assigned to a client is available at the remote site, then traffic must
be offloaded locally, and subnets are unavailable at the remote site must be tunneled back to the WLC. Which feature meets these requirements?

A. learn client IP address


B. FlexConnect local authentication
C. VLAN-based central switching
D. central DHCP processing

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 20 The IT manager is asking the wireless team to get a report for all guest user associations during the past two weeks. In which two formats can Cisco Prime save this report?
(Choose two.)

A. CSV
B. PDF
C. XLS
D. DOC
E. plain text

Correct Answer: AB
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/3-2/user/guide/bk_CiscoPrimeInfrastructure_3_2_0_UserGuide/bk_CiscoPrimeInfrastructure_3_2_0_UserGuide_chapter_01010.html

QUESTION 21 Which devices can be tracked with the Cisco Context


Aware Services?

A. wired and wireless devices


B. wireless devices
C. wired devices
D. Cisco certified wireless devices

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/support/docs/wireless/context-aware-software/110836-cas-faq.html

QUESTION 22
All APs are receiving multicast traffic, instead of only the APs that need it. What is the cause of this problem?

A. The multicast group includes all APs


B. The wrong multicast address was used
C. The multicast group is assigned the wrong VLAN
D. Multicast IGMP snooping is not enabled

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 23
An IT team is growing quickly and needs a solution for management device access. The solution must authenticate users from an external repository instead of the current local on the WLC, and it must also identify the user and determine what
level of access users should have. Which protocol do you recommend to achieve these goals?

A. network policy server


B. RADIUS
C. TACACS+
D. LDAP

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 24 Which two events are outcomes of a successful RF jamming attack?


(Choose two.)

A. disruption of WLAN services


B. unauthentication association
C. deauthentication broadcast
D. deauthentication multicast
E. physical damage to AP hardware

Correct Answer: AE
Section: (none)
Explanation

Explanation/Reference:

QUESTION 25
Which two steps are needed to complete integration of the MSE to Cisco Prime Infrastructure and be able to track the location of clients/rogues on maps? (Choose two.)

A. Synchronize access points with the MSE.


B. Add the MSE to Cisco Prime Infrastructure using the CLI credentials.
C. Add the MSE to Cisco Prime Infrastructure using the Cisco Prime Infrastructure communication credentials configured during set up.
D. Apply a valid license for Wireless Intrusion Prevention System.
E. Apply a valid license for location tracking.

Correct Answer: DE
Section: (none)
Explanation
Explanation/Reference:

QUESTION 26 An engineer is performing a Cisco Hyperlocation accuracy test and executes the cmxloc start command on Cisco CMX. Which two parameters are relevant?
(Choose two.)

A. X, Y real location
B. client description
C. AP name
D. client MAC address
E. WLC IP address

Correct Answer: AD
Section: (none)
Explanation

Explanation/Reference:

QUESTION 27 A network engineer observes a spike in controller CPU overhead and overall network utilization after multicast is enabled on a controller with 500 APs. Which feature connects
the issue?

A. controller IGMP snooping


B. multicast AP multicast mode
C. broadcast forwarding
D. unicast AP multicast mode

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 28
Refer to the exhibit. An engineer must connect a fork lift via a WGB to a wireless network and must authenticate the WGB certificate against the RADIUS server. Which three steps are required for this configuration? (Choose three.)
A. Configure the certificate, WLAN, and radio interface on WGB.
B. Configure the certificate on the WLC.
C. Configure WLAN to authenticate using ISE.
D. Configure the access point with the root certificate from ISE.
E. Configure WGB as a network device in ISE.
F. Configure a policy on ISE to allow devices to connect that validate the certificate.

Correct Answer: ACF


Section: (none)
Explanation

Explanation/Reference:

QUESTION 29
On a branch office deployment, it has been noted that if the FlexConnect AP is in standalone mode and loses connection to the WLC, all clients are disconnected, and the SSID is no longer advertised. Considering that FlexConnect local
switching is enabled, which setting is causing this behavior?

A. ISE NAC is enabled


B. 802.11r Fast Transition is enabled
C. Client Exclusion is enabled
D. FlexConnect Local Auth is disabled

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 30 What is the default IEEE 802.1x AP authentication configuration on a Cisco Catalyst 9800 Series
Wireless Controller?

A. EAP-PEAP with 802.1x port authentication


B. EAP-TLS with 802.1x port authentication
C. EAP-FAST with CAPWAP DTLS + port authentication
D. EAP-FAST with CAPWAP DTLS

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 31 When using a Cisco Catalyst 9800 Series Wireless Controller, which statement about
AutoQoS is true?

A. It has a set of predefined profiles that you cannot modify further


B. It matches traffic and assigns each matched packet to QoS groups
C. It automates deployment of wired QoS and makes wireless QoS implementation easier
D. It allows the output policy map to put specific QoS queues into specific subgroups

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 32 An engineer must implement rogue containment for an SSID. What is the maximum number of APs that should be used for
containment?

A. 1
B. 2
C. 3
D. 4

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/technology/roguedetection_deploy/Rogue_Detection.html

QUESTION 33 What is the maximum time range that can be viewed on the Cisco DNA Center issues and
alarms page?

A. 3 hours
B. 24 hours
C. 3 days
D. 7 days

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 34 An engineer is implementing a FlexConnect group for access points at a remote location using local switching but central DHCP. Which client feature becomes available only if this configuration
is changed?

A. multicast
B. static IP
C. fast roaming
D. mDNS

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 35 What is the default NMSP echo interval between Cisco MSE and a Wireless
LAN Controller?

A. 10 seconds
B. 15 seconds
C. 30 seconds
D. 60 seconds

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/en/US/docs/wireless/mse/3350/6.0/CAS/configuration/guide/msecg_ch4_CAS.html

QUESTION 36 An engineer configures a Cisco Aironet 600 Series OfficeExtend AP for a user who works remotely. What is configured on the Cisco WLC to allow the user to print a printer on his
home network?

A. split tunneling
B. SE-connect
C. FlexConnect
D. AP failover priority

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/support/docs/wireless/aironet-602-officeextend-access-point/117540-configure-splittunneloeap-00.html

QUESTION 37
When implementing self-registration for guest/BYOD devices, what happens when an employee tries to connect four devices to the network at the same time?
A. The last device is removed and the newly added device is updated as active device.
B. The registration is allowed, but only one device is connected at any given time.
C. All devices are allowed on the network simultaneously.
D. Purge time dictates how long a device is registered to the portal.

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 38
Where is Cisco Hyperlocation enabled on a Cisco Catalyst 9800 Series Wireless Controller web interface?

A. Policy Profile
B. AP Join Profile
C. Flex Profile
D. RF Profile

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/b_wl_16_10_cg/cisco-hyperlocation.html

QUESTION 39
A customer is experiencing performance issues with its wireless network and asks a wireless engineer to provide information about all sources of interference and their impacts to the wireless network over the past few days. Where can the
requested information be accessed?

A. CleanAir reports on Cisco Prime Infrastructure


B. Performance reports on Cisco Prime Infrastructure
C. Interference Devices reports on Cisco Wireless LAN Controller
D. Air Quality reports on Cisco Wireless LAN Controller

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 40 An engineer is following the proper upgrade path to upgrade a Cisco AireOS WLC from version 7.3 to 8.9. Which two ACLs for Cisco CWA must be configured when upgrading from the specified codes?
(Choose two.)

A. Permit 0.0.0.0 0.0.0.0 UDP any any


B. Permit 0.0.0.0 0.0.0.0 any DNS any
C. Permit 0.0.0.0 0.0.0.0 UDP DNS anyD. Permit 0.0.0.0 0.0.0.0 UDP any DNS
E. Permit any any any

Correct Answer: AD
Section: (none)
Explanation

Explanation/Reference:
QUESTION 41
Refer to the exhibit. The image shows a packet capture that was taken at the CLI of the Cisco CMX server. It shows UDP traffic from the WLC coming into the server. What does the capture prove?

A. The Cisco CMX server receives NetFlow data from the WLC.
B. The Cisco CMX server receives NMSP traffic from the WLC.
C. The Cisco CMX server receives SNMP traffic from the WLC.
D. The Cisco CMX server receives Angle-of-Arrival data from the WLC.

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 42
CMX Facebook Wi-Fi allows access to the network before authentication. Which two elements are available? (Choose two.)

A. Allow HTTP traffic only before authentication and block all the traffic.
B. Allow all the traffic before authentication and intercept HTTPS only.
C. Allow HTTPs traffic only before authentication and block all other traffic.
D. Allow all the traffic before authentication and intercept HTTP only.
E. Allow SNMP traffic only before authentication and block all the traffic.

Correct Answer: CD
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/mse/8-0/CMX_Connect_Engage_Visitor_Connect/Guide/Cisco_CMX_Connect_Engage_Config_Guide_VC/CMX_Facebook_Wi-Fi.html

QUESTION 43
A wireless engineer needs to implement client tracking. Which method does the angle of arrival use to determine the location of a wireless device?

A. received signal strength


B. triangulation
C. time distance of arrival
D. angle of incidence

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Mobility/WiFiLBS-DG/wifich2.html

QUESTION 44
An engineer is implementing Cisco Identity-Based Networking on a Cisco AireOS controller. The engineer has two ACLs on the controller. The first ACL, named BASE_ACL, is applied to the corporate_clients interface on the WLC, which is
used for all corporate clients. The second ACL, named HR_ACL, is referenced by ISE in the Human Resources group policy. What is the resulting ACL when a Human Resources user connects?

A. HR_ACL appended with BASE_ACL B.


HR_ACL only
C. BASE_ACL appended with HR_ACL
D. BASE_ACL only

Correct Answer: B
Section: (none)
Explanation
Explanation/Reference:
QUESTION 45 Which AP model of the Cisco Aironet Active Sensor is used with Cisco
DNA Center?

A. 1800s
B. 3600e
C. 3800s
D. 4800i

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 46
A FlexConnect remote office deployment is using five 2702i APs indoors and two 1532i APs outdoors. When a code upgrade is performed and FlexConnect Smart AP Image Upgrade is leveraged, but no FlexConnect Master AP has been
configured, how many image transfers between the WLC and APs will occur?

A. 1
B. 2
C. 5
D. 7

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 47 Which three characteristics of a rogue AP pose a high security risk?


(Choose three.)

A. open authentication
B. high RSSI
C. foreign SSID
D. accepts clients
E. low RSSI
F. distant location

Correct Answer: ACD


Section: (none)
Explanation

Explanation/Reference:

QUESTION 48 An engineer must configure a Cisco WLC to support Cisco Aironet 600 Series OfficeExtend APs. Which two Layer 2 security options are supported in this environment?
(Choose two.)

A. Static WEP + 802.1X


B. WPA+WPA2
C. Static WEP
D. CKIP
E. 802.1X

Correct Answer: BC
Section: (none)
Explanation

Explanation/Reference:

QUESTION 49
Refer to the exhibit. An engineer is creating an ACL to restrict some traffic to the WLC CPU. Which selection must be made from the direction drop-down list?

A. It must be Inbound because traffic goes to the WLC.


B. Packet direction has no significance; it is always Any.
C. It must be Outbound because it is traffic that is generated from the WLC.
D. To have the complete list of options, the CPU ACL must be created only by the CLI.

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 50
During the EAP process and specifically related to the client authentication session, which encrypted key is sent from the RADIUS server to the access point?

A. WPA key
B. session key
C. encryption key
D. shared-secret key

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:
QUESTION 51
Branch wireless users report that they can no longer access services from head office but can access services locally at the site. New wireless users can associate to the wireless while the WAN is down. Which three elements (Cisco
FlexConnect state, operation mode, and authentication method) are seen in this scenario? (Choose three.)

A. authentication-local/switch-local
B. WPA2 personal
C. authentication-central/switch-central
D. lightweight mode
E. standalone mode
F. WEB authentication

Correct Answer: ABE


Section: (none)
Explanation

Explanation/Reference:

QUESTION 52 What is an important consideration when implementing a dual SSID


design for BYOD?

A. After using the provisioning SSID, an ACL that used to make the client switch SSIDs forces the user to associate and traverse the network by MAC filtering.
B. If multiple WLCs are used, the WLAN IDs must be exact for the clients to be provisioned and traverse the network correctly.
C. SSIDs for this setup must be configured with NAC State-RADIUS NAC for the clients to authenticate with Cisco ISE, or with NAC State-ISE NAC for Cisco ISE to associate the client.
D. One SSID is for provisioning and the other SSID is for gaining access to the network. The use of an ACL should not be enforced to make the client connect to the REAL SSID after provisioning.

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 53
Which two protocols are used to communicate between the Cisco MSE and the Cisco Prime Infrastructure network management software? (Choose two.)

A. HTTPS
B. Telnet
C. SOAP
D. SSH
E. NMSP

Correct Answer: AE
Section: (none)
Explanation

Explanation/Reference:

QUESTION 54 An engineer is configuring multicast for wireless for an all-company video meeting on a network using EIGRP and BGP within a single domain from a single source. Which type of multicast routing should be
implemented?

A. Protocol Independent Multicast Dense Mode


B. Source Specific Multicast
C. Multicast Source Discovery Protocol
D. Protocol Independent Multicast Sparse Mode

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:
QUESTION 55
Which component must be integrated with Cisco DNA Center to display the location of a client that is experiencing connectivity issues?

A. Cisco Hyperlocation Module


B. Wireless Intrusion Prevention System
C. Cisco Connected Mobile Experiences
D. Cisco Mobility Services Engine

Correct Answer: A
Section: (none)
Explanation

Explanation/Reference:

QUESTION 56
An engineer configured a Cisco AireOS controller with two TACACS+ servers. The engineer notices that when the primary TACACS+ server fails, the WLC starts using the secondary server as expected, but the WLC does not use the primary
server again until the secondary server fails or the controller is rebooted. Which cause of this issue is true?

A. Fallback is enabled
B. Fallback is disabled
C. DNS query is disabled
D. DNS query is enabled

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:

QUESTION 57 A Cisco WLC has been added to the network and Cisco ISE as a network device, but authentication is failing. Which configuration within the network device configuration should
be verified?

A. SNMP RO community
B. device interface credentials
C. device ID
D. shared secret

Correct Answer: D
Section: (none)
Explanation

Explanation/Reference:

QUESTION 58
Refer to the exhibit. A network administrator deploys the DHCP profiler service in two ISE servers: 10.3.10.101 and 10.3.10.102. All BYOD devices connecting to WLAN on VLAN63 have been incorrectly profiled and are assigned as unknown
profiled endpoints. Which action efficiently rectifies the issue according to Cisco recommendations?
A. Nothing needed to be added on the Cisco WLC or VLAN interface. The ISE configuration must be fixed.
B. Disable DHCP proxy on the Cisco WLC.
C. Disable DHCP proxy on the Cisco WLC and run the ip helper-address command under the VLAN interface to point to DHCP and the two ISE servers.
D. Keep DHCP proxy enabled on the Cisco WLC and define helper-address under the VLAN interface to point to the two ISE servers.

Correct Answer: C
Section: (none)
Explanation

Explanation/Reference:

QUESTION 59 Which statement about the VideoStream/Multicast Direct


feature is true?

A. IP multicast traffic is reliable over WLAN by default as defined by the IEEE 802.11 wireless multicast delivery mechanism.
B. Each VideoStream client acknowledges receiving a video IP multicast stream.
C. It converts the unicast frame to a multicast frame over the air.
D. It makes the delivery of the IP multicast stream less reliable over the air, but reliable over Ethernet.

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-1/configuration-guide/b_cg81/multicast_broadcast_setup.html

QUESTION 60 Where is a Cisco OEAP enabled on a Cisco Catalyst 9800 Series


Wireless Controller?

A. RF Profile
B. Flex Profile
C. Policy Profile
D. AP Join Profile

Correct Answer: B
Section: (none)
Explanation

Explanation/Reference:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/b_wl_16_10_cg/flexconnect.html

You might also like