[Free] Download New Updated (October 2016) Cisco 350-018 Real Exam 271-280

Ensurepass

QUESTION 271

Which three statements about the TACACS protocol are correct? (Choose three.)

 

A.

TACACS+ is an IETF standard protocol.

B.

TACACS+ uses TCP port 47 by default.

C.

TACACS+ is considered to be more secure than the RADIUS protocol.

D.

TACACS+ can support authorization and accounting while having another separate authentication solution.

E.

TACACS+ only encrypts the password of the user for security.

F.

TACACS+ supports per-user or per-group for authorization of router commands.

 

Correct Answer: CDF

 

 

QUESTION 272

Which three EAP methods require a server-side certificate? (Choose three.)

 

A.

PEAP with MS-CHAPv2

B.

EAP-TLS

C.

EAP-FAST

D.

EAP-TTLS

E.

EAP-GTP

 

Correct Answer: ABD

 

 

QUESTION 273

Which statement is true about EAP-FAST?

 

A.

It supports Windows single sign-on.

B.

It is a proprietary protocol.

C.

It requires a certificate only on the server side.

D.

It does not support an LDAP database.

 

Correct Answer: A

 

 

QUESTION 274

Which four attributes are identified in an X.509v3 basic certificate field? (Choose four.)

 

A.

key usage

B.

certificate serial number

C.

issuer

D.

subject name

E.

signature algorithm identifier

F.

CRL distribution points

G.

subject alt name

 

Correct Answer: BCDE

 

 

QUESTION 275

What is the purpose of the OCSP protocol?

 

A.

checks the revocation status of a digital certificate

B.

submits a certificate signing request

C.

verifies a signature of a digital certificate

D.

protects a digital certificate with its private key

 

Correct Answer: A

 

 

QUESTION 276

What are two reasons for a certificate to appear in a CRL? (Choose two.)

 

A.

CA key compromise

B.

cessation of operation

C.

validity expiration

D.

key length incompatibility

E.

certification path invalidity

Correct Answer: AB

 

 

QUESTION 277

Which transport method is used by the IEEE 802.1X protocol?

 

A.

EAPOL frames

B.

802.3 frames

C.

UDP RADIUS datagrams

D.

PPPoE frames

 

Correct Answer: A

 

 

QUESTION 278

Which encryption mechanism is used in WEP?

 

A.

RC4

B.

RC5

C.

DES

D.

AES

 

Correct Answer: A

 

 

QUESTION 279

Which three statements about Security Group Tag Exchange Protocol are true? (Choose three.)

 

A.

SXP runs on UDP port 64999.

B.

A connection is established between a “listener” and a “speaker.”

C.

It propagates the IP-to-SGT binding table across network devices that do not have the ability to perform SGT tagging at Layer 2 to devices that support it.

D.

SXP is supported across multiple hops.

E.

SXPv2 introduces connection security via TLS.

 

Correct Answer: BCD

 

 

QUESTION 280

What does the SXP protocol exchange between peers?

 

A.

IP to SGT binding information

B.

MAC to SGT binding information

C.

ingress port to SGT binding information

D.

ingress switch to SGT binding information

 

Correct Answer: A

 

Free VCE & PDF File for Cisco 350-018 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …