Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

ENCOR 2024 > Done NTP > Flashcards

Done NTP Flashcards

1
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which two mechanisms are available to secure NTP? (Choose two.)

A. IPsec
B. IP prefix list-based
C. encrypted authentication
D. TACACS-based authentication
E. IP access list-based

A

C. encrypted authentication
E. IP access list-based

Cisco strongly recommends that you use the security features of NTP to avoid the accidental or malicious setting of incorrect time. Two mechanisms are available: an access list-based restriction scheme and an encrypted authentication mechanism.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

When configuring WPA2 Enterprise on a WLAN, which additional security component configuration is required?

A. PKI server
B. NTP server
C. RADIUS server
D. TACACS server

A

C. RADIUS server

WPA2-Enterprise
Deploying WPA2-Enterprise requires a RADIUS server, which handles the task of authenticating network users access. The actual authentication process is based on the 802.1x policy and comes in several different systems labelled EAP.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which NTP Stratum level is a server that is connected directly to an authoritative time source?

A. Stratum 0
B. Stratum 1
C. Stratum 14
D. Stratum 15

A

B. Stratum 1

“NTP servers that are directly attached to an authoritative time source are stratum 1 servers”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which two security features are available when implementing NTP? (Choose two.)

A. encrypted authentication mechanism
B. symmetric server passwords
C. clock offset authentication
D. broadcast association mode
E. access list-based restriction scheme

A

A. encrypted authentication mechanism
E. access list-based restriction scheme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which encryption hashing algorithm does NTP use for authentication?

A. SSL
B. MD5
C. AES128
D. AES256

A

B. MD5

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which measure is used by an NTP server to indicate its closeness to the authoritative time source?

A. stratum
B. time zone
C. latency
D. hop count

A

A. stratum

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

NTP

What does the number in an NTP stratum level represent?

A. The number of hops it takes to reach the authoritative time source
B. The amount of offset between the device clock and true time
C. The number of hops it takes to reach the primary time server
D. The amount of drift between the device clock and true time

A

A. The number of hops it takes to reach the authoritative time source

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

You want to securely implement the Network Time Protocol (NTP) on your network. What two mechanisms are available to secure NTP? (Choose two.)

A. IPSec communication
B. MD5 authentication keys
C. Role based access control (RBAC)
D. access-group configuration

A

B. MD5 authentication keys
D. access-group configuration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

NTP

A

Step 1
Configure an authentication key pair for NTP and specify whether the key will be trusted or untrusted.

Step 2
Set the IP address of the NTP server and the public key.

Step 3
Enable NTP client mode.

Step 4
Enable NTP authentication.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which NTP mode must be activated when using a Cisco router as an NTP authoritative server?

A. primary
B. peer
C. broadcast client
D. server

A

D. server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Refer to the exhibit. What is the result of the NTP configuration?

A. The router will use the address of loppback 0 to communicate with the NTP server.
B. The router will advertise but not listen to NTP broadcast packets.
C. The router will be used as an NTP authoritative server only if it synchronized with an outside source.
D. The router will be used as an NTP authoritative server, even if it is not synchronized with an outside source.

A

D. The router will be used as an NTP authoritative server, even if it is not synchronized with an outside source.

Because the Cisco implementation of NTP does not support directly attached radio or atomic clocks, the router is normally synchronized, directly or indirectly, to an external system that has such a clock. In a network without Internet connectivity, such a time source may not be available. The ntp master command is used in such cases.
To configure the Cisco IOS software as a Network Time Protocol (NTP) master clock to which peers synchronize themselves when an external NTP source is not available, use the ntp master command in global configuration mode.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Refer to the exhibit. What is the purpose of the configuration?

A. The router will function in NTP in client mode.
B. The router will use 172.16.1.1 as the source for NTP packets.
C. The router is allowed to receive NTP broadcast packets.
D. The router will function as an authoritative NTP server.

A

D. The router will function as an authoritative NTP server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which NTP concept is used to measure the distance from a device to its authoritative time source?

A. stratum
B. NTP peer
C. GPS
D. atomic clock

A

A. stratum

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Drag and drop the NTP elements from the left onto the correct descriptions on the right.

A

associations = propagate broadcast
client = listen to broadcast
access = permit or deny access
authentication = MD5

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

ENCOR 2024 (34 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions