nerdexam
Exams350-401Questions#250
CiscoCisco

350-401 · Question #250

350-401 Question #250: Real Exam Question with Answer & Explanation

The correct answer is B: All wireless clients. For PSK authentication without an ISE server, all wireless clients and all Access Points/Wireless LAN Controllers must be configured with the identical pre-shared key string.

Submitted by ricky.ec· Mar 6, 2026Security

Question

When PSK authentication is used on a WLAN, without the use of an ISE server, which of the following devices must be configured with the key string? (Choose two.)

Options

  • AOne wireless client (each with a unique key string)
  • BAll wireless clients
  • CAll APs and WLCs
  • DA RADIUS server

Explanation

For PSK authentication without an ISE server, all wireless clients and all Access Points/Wireless LAN Controllers must be configured with the identical pre-shared key string.

Common mistakes.

  • A. Each client uses the same key string for a given PSK WLAN, not a unique one; unique keys are typically associated with 802.1X/RADIUS authentication.
  • D. A RADIUS server is used for 802.1X authentication, not for simple PSK authentication, especially when the question explicitly excludes an ISE server.

Concept tested. PSK authentication configuration

Reference. https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-5/config-guide/b_cg85/b_cg85_chapter_0100000.html

Topics

#PSK authentication#WLAN security#WLC configuration#Wireless client configuration

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-401 PracticeBrowse All 350-401 Questions