Download New Updated (Spring 2015) Cisco 650-472 Actual Tests 1-10

By | April 28, 2015

Ensurepass

QUESTION 1

Which two statements represent good use cases for Wake on LAN? (Choose two.)

 

A.

WoL can be used to power-up hosts for on-demand PXE booting.

B.

WoL can be used to power-up hosts for after-hours operating system updates and application patching.

C.

WoL can be used to power-up hosts to access the IPMI.

D.

WoL can be used to save electricity by powering down underused servers and desktops.

 

Correct Answer: AB

 

 

QUESTION 2

Which two choices are valid methods of authorizing a wired supplicant? (Choose two.)

 

A.

EAP-FAST

B.

VLAN assignment

C.

dACL

D.

EAPOL

E.

RADIUS

 

Correct Answer: BC

 

 

QUESTION 3

Which two statements about MACsec security are true? (Choose two.)

 

A.

MACsec is an IEEE standard that is defined by 802.3AE.

B.

MACsec leverages an 802.1X EAP framework to negotiate the MACsec Key Agreement.

C.

MACsec is an IETF standard that is defined by RFC 4501.

D.

MACsec can negotiate a MACsec Key Agreement without 802.1X.

E.

MACsec is an IETF standard that is defined by RFC 4505.

F.

MACsec is an IEEE standard that is defined by 802.1AE.

 

Correct Answer: BF

 

 

QUESTION 4

Which statement correctly defines a persona?

 

A.

A Cisco ISE node can be configured as a primary or backup persona.

B.

Persona refers to collections of services running on a Cisco ISE node.

C.

A Cisco ISE node can be configured as a wired or wireless persona.

D.

Persona relates to the collection of 802.1X services configured on a Cisco Catalyst switch.

E.

Persona refers to the collection of EAP methods available to a supplicant.

F.

A Cisco ISE node can be configured as a standalone or distributed persona.

 

Correct Answer: B

 

 

 

 

 

QUESTION 5

Which two EAP methods are examples of challenge-response methods? (Choose two.)

 

A.

EAP-TLS

B.

PEAP

C.

EAP-FAST

D.

LEAP

E.

EAP-MD5

 

Correct Answer: DE

 

 

QUESTION 6

On a Cisco Catalyst switch, which default ports will the radius-server host command use for RADIUS authentication and accounting messages?

 

A.

TCP – Authentication 1645/Accounting 1646

B.

TCP – Authentication 1535/Accounting 1536

C.

TCP – Authentication 1812/Accounting 1813

D.

UDP – Authentication 1535/Accounting 1536

E.

UDP – Authentication 1812/Accounting 1813

F.

UDP – Authentication 1645/Accounting 1646

 

Correct Answer: E

 

 

QUESTION 7

Which three modules are valid components of Cisco AnyConnect Secure Mobility Client for Windows? (Choose three)

 

A.

Network Access Manager

B.

VPN Module

C.

Network Authentication Manager

D.

Telemetry and Profiling Module

E.

Profiling Module

F.

Posture Module

G.

Profiling Module

 

Correct Answer: AEF

 

 

QUESTION 8

Which option is a good example of a non-supplicant host?

 

A.

Laptop running Microsoft Windows 7

B.

IP printer

C.

desktop PC running Ubuntu Linux

D.

IP camera

E.

Apple Macintosh running Mac OS X

 

Correct Answer: BD

 

QUESTION 9

Which three RADIUS attributes art required to dynamically assign a VIAN? (Choose three)

 

A.

Attribute 65 (Tunnel-Medium-Type)

B.

Attribute 26 (Vendor-Specific)

C.

Attribute 64 (Tunnel-Type)

D.

Attribute 8 (Framed-IP-Address)

E.

Attribute 5 (NASPort)

F.

Attribute 81 (Tunne1-Private-Group-ID)

 

Correct Answer: ACF

 

 

QUESTION 10

Consider the example of an end user plugging an unmanaged third-party switch into a port in a conference room. If the wiring closet switch port requires 802.1X authentication (and the authentication host mode is set to the default), what would be the result of multiple 802.1X clients attempting to access the network from the unmanaged switch?

 

A.

After the first supplicant authenticates, other hosts connected to the unmanaged switch will be blocked from the network.

B.

After 802.1X times out three times, all hosts on the unmanaged switch will have access to the network.

C.

Up to eight hosts and one IP phone can be authenticated.

D.

After the first supplicant authenticates, all other hosts connected to the unmanaged switch have access to the network.

 

Correct Answer: A

 

Free VCE & PDF File for Cisco 650-472 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …