Download New Latest (May) Cisco 642-737 Actual Tests 1-10

By | May 17, 2015

Ensurepass

Exam A

 

QUESTION 1

Which three WLAN polices can be controlled by using the Cisco IBNS on the Cisco WLC and Cisco Secure ACS? (Choose three.)

 

A.

QoS setting

B.

VLAN

C.

EAP type

D.

ACL

E.

authentication priority order

F.

NAC state

 

Answer: ABD

 

 

QUESTION 2

Which two tools help to provide PCI compliance reports? (Choose two.)

 

A.

WLC

B.

WCS

C.

MSE

D.

Ekahau Site Survey

E.

AirMagnet WiFi Analyzer

 

Answer: BE

 

 

QUESTION 3

When configuring the WLC for single sign-on for the NAC, which device is used for the RADIUS accounting IP address?

 

A.

Cisco NAC Appliance Manager

B.

Cisco NAC Appliance Server

C.

Cisco NAC Guest Server

D.

Cisco ACS

E.

Cisco WCS

 

Answer: A

 

 

QUESTION 4

What are the three methods that a Cisco AnyConnect v3.0 profile can be applied to a client device? (Choose three.)

 

A.

Cisco ASA version 8.2 and later can instruct users to open a specific page on the ASA web interface, from where NAM and user profiles can be downloaded.

B.

The DHCP option for using a TFTP server automates where NAM and user profiles can be downloaded.

C.

The administrator can manually copy the profile to the correct location on the client PC.

D.

The administrator can also use the predeploy installer (MSI on Windows) with the generated profiles.

E.

When loaded, the Posture Module can verify and request the user to load the latest profile.

F.

The administrator can use the Cisco AnyConnect v3.0 server feature to allow clients to authenticate with the AAA server and then download the appropriate profile to their client PC.

 

Answer: ACD

 

 

QUESTION 5

Which option verifies that a wireless client has associated but is not yet authenticated to a WLAN when performing NAC using the Cisco NAC Appliance Manager and Server?

 

A.

Cisco CAM OOB Management > Devices > Discovered Clients

B.

Cisco CAS OOB Management > Devices > Discovered Clients

C.

Cisco CAM Monitor > View Online Users

D.

Cisco CAS Monitor > View Online Users

 

Answer: A

 

 

QUESTION 6

Which answer best describes the implementation of IBN using the Cisco WLC v7.0 and Cisco Secure ACS v4.2?

 

A.

Configure the ACS for AAA override and attributes. Configure the WLC for RADIUS server.

B.

Configure the ACS for AAA override and attributes. Configure the WLC for RADIUS server and attributes.

C.

< span lang="EN-US" style="font-family: ; mso-no-proof: yes">Configure the ACS for attributes. Configure the WLC for RADIUS server and AAA override.

D.

Configure the ACS for attributes. Configure the WLC for RADIUS server, AAA override, and attributes.

 

Answer: D

 

 

QUESTION 7

Which two EAP type(s) require a client certificate? (Choose two.)

 

A.

LEAP

B.

PEAP

C.

EAP-FAST

D.

EAP-TLS

E.

EAP-MD5

 

Answer: CD

 

 

QUESTION 8

Which type of attack is a result of a WLAN being overwhelmed by 802.1X authentication requests?

 

A.

NetStumbler attack

B.

EAPOL flood signature

C.

management flood signatures

D.

broadcast deauthentication frame signatures

E.

NULL probe response signatures

 

Answer: B

 

 

QUESTION 9

A wireless client has finished 802.1X and EAP using WPA2 with a controller-based AP network using a central AAA server. How is unicast encryption implemented on the client?

 

A.

The client uses the PMK that is sent from the AAA server that is derived from EAP authentication.

B.

The client uses the PTK that is sent from the WLC, which was derived from the PMK that is sent from the AAA server.

C.

The client uses the PTK that is derived from EAP authentication.

D.

The client uses the PMK that is derived from a four-way handshake with the AP.

E.

The client uses the PTK that is derived from a four-way handshake with the AP.

 

Answer: E

 

 

QUESTION 10

A network administrator is assigning a one-to-one association for VLAN to wireless WLAN or SSID. Given the implementation of a Cisco 2500 Series controller using v7.0, how many WLANs can be created?

 

A.

8

B.

16

C.

32

D.

64

E.

128

F.

254

G.

512

 

Answer: B

 

Free VCE & PDF File for Cisco 642-737 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …