Home Exams
Log In Sign Up
Exams > Cisco > 200-301: Cisco Certified Network Associate (CCNA)
200-301: Cisco Certified Network Associate (CCNA)
Page 17 out of 80 pages Questions 161-170 out of 791 questions
Question#161

How do AAA operations compare regarding user identification, user services, and access control?

  • A. Authorization provides access control, and authentication tracks user services
  • B. Authentication identifies users, and accounting tracks user services
  • C. Accounting tracks user services, and authentication provides access control
  • D. Authorization identifies users, and authentication provides access control
Discover Answer Hide Answer

B

Question#162

What is the difference between RADIUS and TACACS+?

  • A. RADIUS logs all commands that are entered by the administrator, but TACACS+ logs only start, stop, and interim commands.
  • B. TACACS+ separates authentication and authorization, and RADIUS merges them.
  • C. TACACS+ encrypts only password information, and RADIUS encrypts the entire payload.
  • D. RADIUS is most appropriate for dial authentication, but TACACS+ can be used for multiple types of authentication.
Discover Answer Hide Answer

B

Question#163

What is a difference between local AP mode and FlexConnect AP mode?

  • A. Local AP mode creates two CAPWAP tunnels per AP to the WLC
  • B. Local AP mode causes the AP to behave as if it were an autonomous AP
  • C. FlexConnect AP mode fails to function if the AP loses connectivity with the WLC
  • D. FlexConnect AP mode bridges the traffic from the AP to the WLC when local switching is configured
Discover Answer Hide Answer

A

Question#164

The SW1 interface g0/1 is in the down/down state. What are two reasons for the interface condition? (Choose two.)

  • A. There is a protocol mismatch
  • B. There is a duplex mismatch
  • C. The interface is shut down
  • D. The interface is error-disabled
  • E. There is a speed mismatch
Discover Answer Hide Answer

DE
The interface is shut down - ADMIN DOWN / DOWN
The interface is error-disabled - DOWN / DOWN
There is a speed mismatch - DOWN / DOWN

Question#165

How will Link Aggregation be implemented on a Cisco Wireless LAN Controller?

  • A. The EtherChannel must be configured in ג€mode activeג€.
  • B. When enabled, the WLC bandwidth drops to 500 Mbps.
  • C. To pass client traffic, two or more ports must be configured.
  • D. One functional physical port is needed to pass client traffic.
Discover Answer Hide Answer

D
Reference:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-2/config-guide/b_cg82/b_cg82_chapter_010101011.html

Question#166

Which two conditions must be met before SSH operates normally on a Cisco IOS switch? (Choose two.)

  • A. IP routing must be enabled on the switch.
  • B. A console password must be configured on the switch.
  • C. Telnet must be disabled on the switch.
  • D. The switch must be running a k9 (crypto) IOS image.
  • E. The ip domain-name command must be configured on the switch.
Discover Answer Hide Answer

DE
Reference:
https://www.cisco.com/c/en/us/support/docs/security-vpn/secure-shell-ssh/4145-ssh.html

Question#167


Refer to the exhibit. Which password must an engineer use to enter the enable mode?

  • A. adminadmin123
  • B. cisco123
  • C. default
  • D. testing1234
Discover Answer Hide Answer

D
If neither the enable password command nor the enable secret command is configured, and if there is a line password configured for the console, the console line password serves as the enable password for all VTY sessions -> The ג€enable secretג€ will be used first if available, then ג€enable passwordג€ and line password.

Question#168

Which state does the switch port move to when PortFast is enabled?

  • A. blocking
  • B. listening
  • C. learning
  • D. forwarding
Discover Answer Hide Answer

D

Question#169

Which protocol prompts the Wireless LAN Controller to generate its own local web administration SSL certificate for GUI access?

  • A. RADIUS
  • B. HTTPS
  • C. TACACS+
  • D. HTTP
Discover Answer Hide Answer

B
You can protect communication with the GUI by enabling HTTPS. HTTPS protects HTTP browser sessions by using the Secure Sockets Layer (SSL) protocol.
When you enable HTTPS, the controller generates its own local web administration SSL certificate and automatically applies it to the GUI. You also have the option of downloading an externally generated certificate.
Reference:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_011.html

Question#170

An engineer must configure interswitch VLAN communication between a Cisco switch and a third-party switch. Which action should be taken?

  • A. configure DSCP
  • B. configure IEEE 802.1q
  • C. configure ISL
  • D. configure IEEE 802.1p
Discover Answer Hide Answer

B
VLAN trunking offers two options, ISL and 802.1Q. ISL is Cisco proprietary while 802.1Q is standards based and supported by multiple vendors.

chevron rightPrevious Nextchevron right
Email: support@exam-data.com
Copyright © 2024 Exam Data. All rights reserved.
Home Exams
chevron
Public Agreement Privacy Policy Sales and Refunds