Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

255N - Warrant Officer Advance Course > CCNP Switch Ch 7 (Incomp) > Flashcards

CCNP Switch Ch 7 (Incomp) Flashcards

1
Q

Refer to the exhibit. Given the configuration on the ALSwitch, what is the end result?

forces all hosts that are attached to a port to authenticate before being allowed access to the network

disables 802.1x port-based authentication and causes the port to allow normal traffic without authenticating the client

enables 802.1x authentication on the port

globally disables 802.1x authentication

A

disables 802.1x port-based authentication and causes the port to allow normal traffic without authenticating the client

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which three commands are necessary to configure NTP authentication between devices? (Choose three.)

ntp authenticate

ntp authentication-key 1 md5

ntp trusted-key 1

ntp authentication

ntp trusted-key authentication 1

ntp md5 authentication-key 1

A

ntp authenticate

ntp authentication-key 1 md5

ntp trusted-key 1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Refer to the exhibit. Which feature does a SNMP manager need in order to set a parameter on switch ACSW1?

a manager using an SNMP string of K44p0ut

a manager using host 172.16.128.50

a manager using SNMPv1, 2, or 2c

a manager using authPriv

A

a manager using SNMPv1, 2, or 2c

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which statement is true about 802.1x port-based authentication?

Authentication can only be initiated by the host.

Authentication can only be initiated by the switch.

Authentication can be initiated by either the switch or the host.

If the host does not receive a response to a start frame, it goes into the shutdown mode.

When a host comes up that is attached to a switch port, the authentication server queries the host for 802.1x authentication information.

A

Authentication can be initiated by either the switch or the host.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which three are characteristics of the SNTP protocol? (Choose three.)

Provides a secure means for NTP transmissions.

SNTP and NTP cannot coexist on the same device because they use the same port number.

SNTP is a simplified, client-only version of the NTP.

SNTP cannot be used to provide times services to other services.

SNTP provides complex filtering.

SNTP can be used to provide time services to other systems.

A

SNTP and NTP cannot coexist on the same device because they use the same port number.

SNTP is a simplified, client-only version of the NTP.

SNTP cannot be used to provide times services to other services.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Refer to the exhibit. Network policy dictates that security functions should be administered using AAA. Which configuration would create a default login authentication list that uses RADIUS as the first authentication method, the enable password as the second method, and the local database as the final method?

SW-1(config)# aaa new-model
SW-1(config)# radius-server host 10.10.10.12 key secret
SW-1(config)# aaa authentication default group-radius local

SW-1(config)# aaa new-model
SW-1(config)# radius-server host 10.10.10.12 key secret
SW-1(config)# aaa authentication default group-radius enable local

SW-1(config)# aaa new-model
SW-1(config)# radius-server host 10.10.10.12 key secret
SW-1(config)# aaa authentication login default group radius enable local

SW-1(config)# aaa new-model
SW-1(config)# radius server host 10.10.10.12 key secret
SW-1(config)# aaa authentication login default group radius enable local none

SW-1(config)# aaa new-model
SW-1(config)# radius server host 10.10.10.12 key secret
SW-1(config)# aaa authentication login default group-radius enable local none

A

SW-1(config)# aaa new-model
SW-1(config)# radius-server host 10.10.10.12 key secret
SW-1(config)# aaa authentication login default group radius enable local

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Refer to the exhibit. A switch is being configured to support AAA authentication on the console connection. Given the information in the exhibit, which three statements are correct? (Choose three.)

The authentication login admin line console command is required.

The login authentication admin line console command is required.

The configuration creates an authentication list that uses a named access list called group as the first authentication method, a TACACS+ server as the second method, the local username database as the third method, the enable password as the fourth method, and none as the last method.

The configuration creates an authentication list that uses a TACACS+ server as the first authentication method, the local username database as the second method, the enable password as the third method, and none as the last method.

The none keyword enables any user logging in to successfully authenticate if all other methods return an error.

The none keyword specifies that a user cannot log in if all other methods have failed.

A

The login authentication admin line console command is required.

The configuration creates an authentication list that uses a TACACS+ server as the first authentication method, the local username database as the second method, the enable password as the third method, and none as the last method.

The none keyword enables any user logging in to successfully authenticate if all other methods return an error.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the command to configure a device to be an authoritative NTP server?

ntp server 172.16.1.1

ntp master

ntp peer 172.16.1.1

ntp synchronize 172.16.1.1

A

ntp master

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

In a AAA architecture, what is the name of the role given to the client running 802.1x software?

AAA peer

authenticator

authentication server

supplicant

A

supplicant

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which SNMP version provides authentication and encryption for transmission of critical data between managed devices?

SNMPV2

SNMPv3noAuthnoPriv

SNMPv3authPriv

SNMPv3 authNoPriv

A

SNMPv3authPriv

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What SNMP attribute provides the best security?

authNoPriv

authPriv

community string

noAuthNoPriv

SNMPv2

A

authPriv

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are three advantages of implementing the AAA framework model in a network? (Choose three.)

Offers automatic failover solutions for gateway redundancy

Standardized authentication methods

Faster convergence

Username and passwords are stored in a local database for scalability.

Increased flexibility and control of access configuration

Multiple backup systems

A

Standardized authentication methods

Increased flexibility and control of access configuration

Multiple backup systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which SNMP message is sent from the manager?

get response

inform request

set request

trap

A

set request

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which two statements are true about NTP? (Choose two.)

Stratum 1 devices have directly attached radio or atomic clock.

Network devices will always synchronize with NTP server with the highest stratum number.

Higher stratum number always indicates greater quality and reliability.

Stratum number represents the distance from a reference clock.

Stratum numbers are directly related to the routing metric.

A

Stratum 1 devices have directly attached radio or atomic clock.

Stratum number represents the distance from a reference clock

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

255N - Warrant Officer Advance Course (10 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions