nerdexam
Cisco

350-401 · Question #779

A customer has a wireless network deployed within a multi-tenant building. The network provides client access, location-based services, and is monitored using Cisco DNA Center. The security department

The correct answer is B. Cisco aWIPS policies on Cisco DNA Center. Explanation Cisco aWIPS (Adaptive Wireless Intrusion Prevention System) policies configured on Cisco DNA Center is the correct solution because aWIPS uses threat signatures to detect, locate, and track malicious wireless devices - and when the network is managed by Cisco DNA Cent

Submitted by fatima_kr· Mar 6, 2026Security

Question

A customer has a wireless network deployed within a multi-tenant building. The network provides client access, location-based services, and is monitored using Cisco DNA Center. The security department wants to locate and track malicious devices based on threat signatures. Which feature is required for this solution?

Options

  • ACisco aWIPS policies on the WLC
  • BCisco aWIPS policies on Cisco DNA Center
  • Cmalicious rogue rules on the WLC
  • Dmalicious rogue rules on Cisco DNA Center

How the community answered

(51 responses)
  • A
    4% (2)
  • B
    92% (47)
  • C
    2% (1)
  • D
    2% (1)

Explanation

Explanation

Cisco aWIPS (Adaptive Wireless Intrusion Prevention System) policies configured on Cisco DNA Center is the correct solution because aWIPS uses threat signatures to detect, locate, and track malicious wireless devices - and when the network is managed by Cisco DNA Center, aWIPS policies must be configured there to leverage its centralized management, location-based services integration, and advanced forensic capabilities.

Why the distractors are wrong:

  • Option A is incorrect because while aWIPS exists on the WLC, in a DNA Center-managed environment, aWIPS policies are pushed from DNA Center, not configured directly on the WLC.
  • Option C & D are incorrect because rogue rules are used to classify unauthorized access points, not to detect threats based on signatures - that distinction is critical here.

Memory Tip: Think "Signatures = aWIPS, Unauthorized APs = Rogue Rules." Whenever you see threat signatures + DNA Center, lock in on aWIPS on DNA Center - DNA Center is the single pane of glass for policy management in modern Cisco wireless deployments.

Topics

#Wireless Security#Cisco aWIPS#Cisco DNA Center#Threat Detection

Community Discussion

No community discussion yet for this question.

Full 350-401 Practice