Exam Code: 300-375 (300-375 Dumps), Exam Name: Securing Cisco Wireless Enterprise Networks, Certification Provider: Cisco Certifitcation, Free Today! Guaranteed Training- Pass 300-375 Exam.
Also have 300-375 free dumps questions for you:
NEW QUESTION 1
Which two requirements must be met to ensure that Cisco ISE can join the Active Directory domain of the company. (Choose two.)
- A. If a firewall exists between Cisco ISE and Active Directory domain server, these ports are allowed through UDP 69, 123, and 389; and TCP 88, 389, 445, 464, 636, 3268, and 3269.
- B. The hostname of Cisco ISE is less than 20 characters in length.
- C. An account has been created in Active Directory for Cisco ISE that has the necessary permissions.
- D. The DNS name is configured on Cisco ISE and resolved on the Active Directory domain server
- E. Time synchronization between Cisco ISE and Active Directory must be within 10 minute
Answer: CD
Explanation:
NEW QUESTION 2
An engineer configures 802.1 X authentication for the access points using the config ap 802.1Xuser add username admin password secret AP_01 command.
Which EAP method does the access point use to authenticate?
- A. EAP-TLS
- B. MS-CHAPv2 PEAP
- C. LEAP
- D. EAP-FAST
Answer: D
Explanation:
Enables or disables Extensible Authentication Protocol-Flexible Authentication via Secure Tunneling (EAP-FAST) authentication.
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/cmdref/b_cr80/config_commands_a_to_i.html
NEW QUESTION 3
An engineer is deploying EAP-TLS as the authentication mechanism for an 802.1X-enabled wireless network. Which network device is responsible for applying the digital signature to a certificate to ensure that the certificate is trusted and valid?
- A. supplicant
- B. CA server
- C. wireless controller
- D. authentication server
Answer: B
Explanation:
NEW QUESTION 4
A Customer is concerned about denial of service attacks that impair the stable operation of the corporate wireless network. The customer wants to purchase mobile devices that will operate on the corporate wireless network. Which IEEE standard should the mobile devices support to address the customer concerns?
- A. 802.11w
- B. 802.11k
- C. 802.11r
- D. 802.11h
Answer: A
Explanation:
NEW QUESTION 5
An engineer is considering an MDM integration with Cisco ISE to assist with security for lost devices. Which two functions of MDM increase security for lost devices that access data from the network? (Choose two.)
- A. PIN enforcement
- B. Jailbreak/root detection
- C. data wipe
- D. data encryption
- E. data loss prevention
Answer: AC
Explanation:
NEW QUESTION 6
Which feature should an engineer select to implement the use of VLAN tagging, QoS, and ACLs to clients based on RADIUS attributes?
- A. per-WLAN RADIUS source support
- B. client profiling
- C. AAA override
- D. captive bypassing
- E. identity-based networking
Answer: C
Explanation:
NEW QUESTION 7
A wireless engineer want to how many wlPS alerts have been detected in CISCO Prime. Which tab does the engineer select in the windows dashboard?
- A. Security
- B. CleanAir
- C. Context Aware
- D. Mesh
Answer: A
Explanation:
Security Index, including the top security issues Adaptive WIPS Rogue classification graph Rogue containment graph Attacks detected Malicious, unclassified, friendly, and custom rogue APs CleanAir security Adhoc rogues Security https://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/3-
1/user/guide/pi_ug/view-dash.html
NEW QUESTION 8
What are two of the benefits that the Cisco AnyConnect v3.0 provides to the administrator for client WLAN security configuration? (Choose two.)
- A. Provides a reporting mechanism for rouge APs
- B. Prevents a user from adding any WLANs
- C. Hides the complexity of 802.1X and EAP configuration
- D. Supports centralized or distributed client architectures
- E. Provides concurrent wired and wireless connectivity
- F. Allows users to modify but not delete admin-created profiles
Answer: CD
Explanation:
NEW QUESTION 9
Which two considerations must a network engineer have when planning for voice over wireless roaming? (Choose two.)
- A. Roaming with only 802.1x authentication requires full reauthentication.
- B. Full reauthentication introduces gaps in a voice conversation.
- C. Roaming occurs when e phone has seen at least four APs.
- D. Roaming occurs when the phone has reached -80 dBs or belo
Answer: AB
Explanation:
NEW QUESTION 10
Scenario
Local Web Auth has been configured on the East-WLC-2504A, but it is not working. Determine which actions must be taken to restore the Local Web Auth service. The Local Web Auth service must operate only with the Contractors WLAN.
Contractors WLAN ID – 10 Employees WLAN ID - 2
Note, not all menu items, text boxes, or radio buttons are active.
Virtual Terminal
Which four changes must be made to configuration parameters to restore the Local Web Auth feature on the East-WLC-2504A? Assume the passwords are correctly entered as “ciscotest”. (Choose four.)
- A. Remove the existing Local Net User Bill Smith and add a New Local Net User “Bill Smith” password “ciscotest’, WLAN Profile “Contractors”.
- B. Remove WLAN 10 and WLAN 2, replace WLAN 10 with Profile Name Employees and SSID Contractors;replace WLAN 2 with Profile Name Employees and SSID Employees.
- C. Remove WLAN 10 and WLAN 2, replace WLAN 10 with Profile Name Contractors and SSID Contractors, replace WLAN 2 with Profile Name Employees and SSID Employees.
- D. Change the Layer 2 security to None on the Contractors WLAN.
- E. Under Layer 3 Security, change the Layer 3 Security to Web Policy on the Contractors WLAN.
- F. Under Security Local Net Users add a New Local Net User “Bill Smith” password “Cisco”, interface/ Interface Group “east-wing”.
- G. Change the Layer 2 Security to None + EAP Pass-through on the Contractors WLAN.
- H. Under WLANs > Edit “Contractors “change the interface/Interface group to “east-wing”.
Answer: CEFG
Explanation:
NEW QUESTION 11
An engineer is preparing to implement a BYOD SSID at remote offices using local switching and wants to ensure that Wi-Fi Direct clients can communicate after the SSID is deployed. The engineer is planning on implementing the config wlan wifidirect allow 1 command. Which Wi-Fi Direct Client Policy consideration is applicable?
- A. Policy is applicable only with central switched WLANs on FlexConnect Aps.
- B. Policy is applicable only when P2P is set to disabled.
- C. Policy is applicable only to APs in FlexConnect mode only.
- D. Policy is applicable only on WLANs that have APs in local mode onl
Answer: A
Explanation:
NEW QUESTION 12
A wireless engineer wants to view how many wIPS alerts have been detected in Cisco Prime. Which tab does the engineer select in the wireless dashboard?
- A. Security
- B. Cleanair
- C. Context Aware
- D. Mesh
Answer: A
Explanation:
NEW QUESTION 13
A new MSE with wIPS service has been installed and no alarm information appears to be reaching
the MSE from controllers.
What protocol must be allowed to reach the MSE from the controllers?
- A. NMSP
- B. SOAP/XML
- C. SNMP
- D. CAPWAP
Answer: B
Explanation:
NEW QUESTION 14
Answer:
Explanation: Please refer the link below in Explanation to configure this simulation.
Example:
Use this link to configure all the steps for this simulation : http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/116880-configwpa2- psk-00.html
NEW QUESTION 15
While deploying PEAP authentication on a customer laptop with the native Windows supplicant, the PEAP security options do not appear. Which option describes what must be done?
- A. Enable automatic connection to the WLAN.
- B. Enable static DNS on the WLAN.
- C. Enable AES on the WLAN settings.
- D. Enable WLAN autoconfig services on the P
Answer: C
Explanation:
NEW QUESTION 16
Which EAP types are supported by MAC 10.7 for authentication to a Cisco Unified Wireless Network?
- A. LEAP and EAP-Fast only
- B. EAP-TLS and PEAP only
- C. LEAP, EAP-TLS, and PEAP only
- D. LEAP, EAP-FAST, EAP-TLS, and PEAP
Answer: D
Explanation:
NEW QUESTION 17
Which EAP method can an AP use to authenticate to the wired network?
- A. EAP-GTC
- B. EAP-MD5
- C. EAP-TLS
- D. EAP-FAST
Answer: C
Explanation:
NEW QUESTION 18
An engineer is configuring a new mobility anchor for a WLAN on the CLI with the config wlan mobility anchor add 3 10.10.10.10 command, but the command is failing. Which two conditions must be met to be able to enter this command? (Choose two.)
- A. The anchor controller IP address must be within the management interface subnet.
- B. The anchor controller must be in the same mobility group.
- C. The WLAN must be enabled.
- D. The mobility group keepalive must be configured.
- E. The indicated WLAN ID must be present on the controlle
Answer: AB
Explanation:
P.S. Easily pass 300-375 Exam with 124 Q&As 2passeasy Dumps & pdf Version, Welcome to Download the Newest 2passeasy 300-375 Dumps: https://www.2passeasy.com/dumps/300-375/ (124 New Questions)