CWSP-206 Exam Questions

Your network implements an 802.1X/EAP-based wireless security solution. A WLAN controller is installed and manages seven APs. FreeRADIUS is used for the RADIUS server and is instal...

In an IEEE 802.11-compliant WLAN, when is the 802.1X Controlled Port placed into the unblocked state?

When using a tunneled EAP type, such as PEAP, what component is protected inside the TLS tunnel so that it is not sent in clear text across the wireless medium?

What protocol, listed here, allows a network manager to securely administer the network?

XYZ Company has recently installed a controller-based WLAN and is using a RADIUS server to query authentication requests to an LDAP server. XYZ maintains user-based access policies...

Role-Based Access Control (RBAC) allows a WLAN administrator to perform what network function?

A large enterprise is designing a secure, scalable, and manageable 802.11n WLAN that will support thousands of users. The enterprise will support both 802.1X/ EAP-TTLS and PEAPv0/M...

ABC Company is implementing a secure 802.11 WLAN at their headquarters (HQ) building in New York and at each of the 10 small, remote branch offices around the United States. 802.1X...

ABC Company is an Internet Service Provider with thousands of customers. ABC's customers are given login credentials for network access when they become a customer. ABC uses an LDA...

ABC Company has recently installed a WLAN controller and configured it to support WPA2- Enterprise security. The administrator has configured a security profile on the WLAN control...

ABC Company is deploying an IEEE 802.11-compliant wireless security solution using 802.1X/EAP authentication. According to company policy, the security solution must prevent an eav...

The IEEE 802.11 Pairwise Transient Key (PTK) is derived from what cryptographic element?

In the basic 4-way handshake used in secure 802.11 networks, what is the purpose of the ANonce and SNonce?

ABC Company has a WLAN controller using WPA2-Enterprise with PEAPv0/MS-CHAPv2 and AES-CCMP to secure their corporate wireless data. They wish to implement a guest WLAN for guest us...

The IEEE 802.11 standard defined Open System authentication as consisting of two auth frames and two assoc frames. In a WPA2-Enterprise network, what process immediately follows th...

Your company has just completed installation of an IEEE 802.11 WLAN controller with 20 controller-based APs. The CSO has specified PEAPv0/EAP-MSCHAPv2 as the only authorized WLAN a...

You support a coffee shop and have recently installed a free 802.11ac wireless hotspot for the benefit of your customers. You want to minimize legal risk in the event that the hots...

You are using a utility that takes input and generates random output. For example, you can provide the input of a known word as a secret word and then also provide another known wo...

Many corporations configure guest VLANs on their WLAN controllers that allow visitors to have Internet access only. The guest traffic is tunneled to the DMZ to prevent some securit...

While seeking the source of interference on channel 11 in your 802.11n WLAN running within 2.4 GHz, you notice a signal in the spectrum analyzer real time FFT display. The signal i...

You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer...

What attack cannot be detected by a Wireless Intrusion Prevention System (WIPS)?

What security vulnerability may result from a lack of staging, change management, and installation procedures for WLAN infrastructure equipment?

What field in the RSN information element (IE) will indicate whether PSK- or Enterprise-based WPA or WPA2 is in use?

What preventative measures are performed by a WIPS against intrusions?

When monitoring APs within a LAN using a Wireless Network Management System (WNMS), what secure protocol may be used by the WNMS to issue configuration changes to APs?

WLAN protocol analyzers can read and record many wireless frame parameters. What parameter is needed to physically locate rogue APs with a protocol analyzer?

After completing the installation of a new overlay WIPS for the purpose of rogue detection and security monitoring at your corporate headquarters, what baseline function MUST be pe...

A WLAN protocol analyzer trace reveals the following sequence of frames (excluding the ACK frames): 1. 802.11 Probe Req and 802.11 Probe Rsp 2. 802.11 Auth and then another 802.11...

Which of the following wireless security protocols is defined in IEEE 802.11 pre-RSNA security?

Which of the following security levels are applied on the network to prevent unauthorized access? Each correct answer represents a complete solution. Choose all that apply.

Which of the following are legacy authentication protocols used within the stronger EAP authentication protocols? Each correct answer represents a complete solution. Choose all tha...

You are setting up small offices for a major insurance carrier. The company policy states that all wireless configurations must fully implement the 802.11i standard. Based on this...

Which of the following monitors program activities and modifies malicious activities on a system?

Which of the following are the layers of physical security? Each correct answer represents a complete solution. Choose all that apply.

Your Company is receiving false and abusive e-mails from the e-mail address of your partner company. When you complain, the partner company tells you that they have never sent any...

Which of the following attacks are considered as authentication attacks? Each correct answer represents a complete solution. Choose all that apply.

Which of the following is a passive device that cannot be detected by a wireless intrusion detection system (WIDS)?

Which of the following attacks is used to obtain a user's authentication credentials?

Which of the following are the three main intended goals of WEP encryption? Each correct answer represents a complete solution. Choose all that apply.

Which of the following encryption methods use the RC4 technology? Each correct answer represents a complete solution. Choose all that apply.

Which of the following keys are used by the symmetric key algorithm? Each correct answer represents a complete solution. Choose all that apply.

A Web developer with your company wants to have wireless access for contractors that come in to work on various projects. The process of getting this approved takes time. So rather...

Which of the following protocols periodically verifies the identity of the client by using a three-way handshake?

You have a Windows laptop computer with an integrated, dual-band, Wi-Fi compliant adapter. Your laptop computer has protocol analyzer software installed that is capable of capturin...

In order to acquire credentials of a valid user on a public hotspot network, what attacks may be conducted? Choose the single completely correct answer.

What WLAN client device behavior is exploited by an attacker during a hijacking attack?

What software and hardware tools are used in the process performed to hijack a wireless station from the authorized wireless network onto an unauthorized wireless network?

Many computer users connect to the Internet at airports, which often have 802.11n access points with a captive portal for authentication. While using an airport hotspot with this s...

During 802.1X/LEAP authentication, the username is passed across the wireless medium in clear text. From a security perspective, why is this significant?