Which network device is responsible for applying the digital signature to a certificate to ensure that the certificate is trusted and valid?
An engineer is deploying EAP-TLS as the authentication mechanism for an 802.1X-enabled wireless network. Which network device is responsible for applying the digital signature to a certificate to ensure that the certificate is trusted and valid?A . supplicantB . CA serverC . wireless controllerD . authentication serverView AnswerAnswer: B
Which three requirements are necessary?
An engineer must change the wireless authentication from WPA2-Personal to WPA2-Enterprise. Which three requirements are necessary? (Choose three.)A . EAPB . 802.1xC . RADIUSD . per-shared keyE . 802.11uF . fast secure roamingG . 802.11iView AnswerAnswer: A,C,G
Which mobility mode must a Cisco 5508 wireless Controller be in to use the MA functionality on a cisco catalyst 3850 series switch with a cisco 550 Wireless Controller as an MC?
Which mobility mode must a Cisco 5508 wireless Controller be in to use the MA functionality on a cisco catalyst 3850 series switch with a cisco 550 Wireless Controller as an MC?A . classic mobilityB . new mobilityC . converged access mobilityD . auto-anchor mobilityView AnswerAnswer: C
Which client roam is considered the fastest in a wireless deployment using Cisco IOS XE mobility controllers and mobility agents?
Which client roam is considered the fastest in a wireless deployment using Cisco IOS XE mobility controllers and mobility agents?A . Roam within stack membersB . Inter-SPG roamC . Interdomain roamD . Intermobility roamE . lntra-SPG roamView AnswerAnswer: B • Inter-SPG, Intra-subdomain roamingThe client roaming between mobility agents in different...
What is the fastest way to disable the rogue?
After receiving an alert regarding a rogue AP, a network engineer logs into Cisco Prime and looks at the floor map where the AP that detected the rogue is located. The map is synchronized with a mobility services engine that determines the rogue device is actually inside the campus. The...
Which process can be configured on Cisco ISE to support this requirement?
A customer wants to allow employees to easily onboard their devices to the wireless network. Which process can be configured on Cisco ISE to support this requirement?A . self registration guest portalB . client provisioningC . native supplicant provisioningD . local web authView AnswerAnswer: B
Which technology is required to accomplish this configuration?
An engineer is configuring a BYOD deployment strategy and prefers a single SSID model. Which technology is required to accomplish this configuration?A . mobility service engineB . wireless control systemC . identify service engineD . Prime InfrastructureView AnswerAnswer: C
Which challenge is resolved by deploying digital client certificates?
When you configure BYOD access to the network, you face increased security risks and challenges. Which challenge is resolved by deploying digital client certificates?A . managing the increase connected devicesB . ensuring wireless LAN performance and reliabilityC . providing device choice and supportD . enforcing company usage policiesView AnswerAnswer: D
Which component uses EAP and 802.1x to pass user authentication to the authenticator?
An engineer must enable EAP on a new WLAN and is ensuring that the necessary components are available. Which component uses EAP and 802.1x to pass user authentication to the authenticator?A . APB . AAA serverC . supplicantD . controllerView AnswerAnswer: D
Which three items must be verified for EAP-TLS authentication?
An engineer has determined that the source of an authentication issue is the client laptop. Which three items must be verified for EAP-TLS authentication? (Choose three.)A . The client certificate is formatted as X 509 version 3B . The validate server certificate option is disabled.C . The client certificate has...