[Free] Download New Updated (October 2016) Cisco 642-737 Real Exam 51-60

Ensurepass

QUESTION 51

DRAG DROP

clip_image002

 

Correct Answer:

clip_image004

 

 

QUESTION 52

A network IPS has been added to a WLC. How long will clients be excluded, if the IPS and WLC client exclusion settings are left at the default setting?

 

A.

30 seconds

B.

60 seconds

C.

30 minutes

D.

60 minutes

 

Correct Answer: B

 

 

QUESTION 53

What two actions must be taken by an engineer configuring wireless Identity-Based Networking for a WLAN to enable VLAN tagging? (Choose two.)

 

A.

enable AAA override on the WLAN

B.

create and apply the appropriate ACL to the WLAN

C.

update the RADIUS server attributes for tunnel type 64, medium type 65, and tunnel private group type 81

D.

configure RADIUS server with WLAN subnet and VLAN ID

E.

enable VLAN Select on the wireless LAN controller and the WLAN

 

Correct Answer: AC

 

 

QUESTION 54

What are two of the benefits that the Cisco AnyConnect v3.0 provides to the administrator for client WLAN security configuration? (Choose two.)

 

A.

Provides a reporting mechanism for rouge APs

B.

Prevents a user from adding any WLANs

C.

Hides the complexity of 802.1X and EAP configuration

D.

Supports centralized or distributed client architectures

E.

Provides concurrent wired and wireless connectivity

F.

Allows users to modify but not delete admin-created profiles

 

Correct Answer: CD

 

 

QUESTION 55

What device will authenticate the user when a sponsor creates a guest account on the Cisco NGS?

 

A.

WLAN controller

B.

Cisco ACS

C.

Cisco NGS

D.

active directory server

 

Correct Answer: C

 

 

QUESTION 56

Which two options are supported when deploying wireless NAC out-of-band implementations? (Choose two.)

 

A.

Cisco NAS in virtual gateway mode

B.

WLANs with allow AAA override enabled

C.

Cisco NAC Guest Server integration with the Cisco NAM

D.

dynamic VLAN mappings on the Cisco NAS, which is based on the returned RADIUS attributes from the Cisco Secure ACS

E.

autonomous APs

 

Correct Answer: AC

 

 

QUESTION 57

Which protocol port(s) need open access when deploying NAC appliances to communicate with the Cisco WLC v7.0 to move an authenticated user from the quarantine VLAN to the access VLAN?

 

A.

UDP 16666

B.

UDP 514

C.

UDP 5246 and 5247

D.

UDP 161 and 162

E.

TCP 443

 

Correct Answer: D

 

 

QUESTION 58

Which option verifies that a wireless client has associated but is not yet authenticated to a WLAN when performing NAC using the Cisco NAC Appliance Manager and Server?

 

A.

Cisco CAM OOB Management > Devices > Discovered Clients

B.

Cisco CAS OOB Management > Devices > Discovered Clients

C.

Cisco CAM Monitor > View Online Users

D.

Cisco CAS Monitor > View Online Users

 

Correct Answer: A

 

 

QUESTION 59

What three items can be found on the Wireless Control System PCI DSS Compliance Report? (Choose three.)

 

A.

all authentication and encryption violations

B.

all ACL violations and reports

C.

all IDS threats

D.

detailed association history for clients connected to the network

E.

all SSIDs not using Client Exclusion

F.

all access points that have rogue detection enabled

 

Correct Answer: ACD

 

 

QUESTION 60

When configuring the WLC for single sign-on for the NAC, which device is used for the RADIUS accounting IP address?

 

A.

Cisco NAC Appliance Manager

B.

Cisco NAC Appliance Server

C.

Cisco NAC Guest Server

D.

Cisco ACS

E.

Cisco WCS

 

Correct Answer: A

 

Free VCE & PDF File for Cisco 642-737 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …