Which type of traffic is sent with pure IPsec?

A. multicast traffic from a server at one site to hosts at another location
B. broadcast packets from a switch that is attempting to locate a MAC address at one of several remote sites
C. unicast messages from a host at a remote site to a server at headquarters
D. spanning-tree updates between switches that are at two different sites

Which encryption method is used by WPA3?

A. TKIP
B. AES
C. SAE
D. PSK

Refer to the exhibit. What must be configured to enable 802.11w on the WLAN?

A. Set Fast Transition to Enabled.
B. Enable WPA Policy.
C. Set PMF to Required.
D. Enable MAC Filtering.

Refer to the exhibit. Clients on the WLAN are required to use 802.11r. What action must be taken to meet the requirement?

A. Under Protected Management Frames, set the PMF option to Required.
B. Enable CCKM under Authentication Key Management.
C. Set the Fast Transition option and the WPA gtk-randomize State to disable.
D. Set the Fast Transition option to Enable and enable FT 802.1X under Authentication Key Management.

DRAG DROP
Drag and drop the AAA features from the left onto the corresponding AAA security services on the right. Not all options are used.
Select and Place:

What is a function of Opportunistic Wireless Encryption in an environment?

A. provide authentication
B. protect traffic on open networks
C. offer compression
D. increase security by using a WEP connection

DRAG DROP
An engineer is tasked to configure a switch with port security to ensure devices that forward unicasts, multicasts, and broadcasts are unable to flood the port. The port must be configured to permit only two random MAC addresses at a time. Drag and drop the required configuration commands from the left onto the sequence on the right. Not all commands are used.
Select and Place:

Refer to the exhibit. An access list is created to deny Telnet access from host PC-1 to RTR-1 and allow access from all other hosts. A Telnet attempt from PC-2 gives this message: "% Connection refused by remote host."
Without allowing Telnet access from PC-1, which action must be taken to permit the traffic?

A. Add the access-list 10 permit any command to the configuration.
B. Remove the access-class 10 in command from line vty 0 4
C. Add the ip access-group 10 out command to interface g0/0.
D. Remove the password command from line vty 0 4.

A Cisco engineer is configuring a factory-default router with these three passwords:
* The user EXEC password for console access is p4ssw0rd1.
* The user EXEC password for Telnet access is s3cr3t2.
* The password for privileged EXEC mode is priv4t3p4ss.
Which command sequence must the engineer configure?

A. enable secret priv4t3p4ss
!
line con 0
password p4ssw0rd1
!
line vty 0 15
password s3cr3t2
B. enable secret priv4t3p4ss
!
line con 0
password p4ssw0rd1
login
!
line vty 0 15
password s3cr3t2
login
C. enable secret priv4t3p4ss
!
line con 0
password login p4ssw0rd1
!
line vty 0 15
password login s3cr3t2
login
D. enable secret privilege 15 priv4t3p4ss
!
line con 0
password p4ssw0rd1
login
!
line vty 0 15
password s3cr3t2
login

Which field within the access-request packet is encrypted by RADIUS?

A. authorized services
B. password
C. authenticator
D. username