An 802.1X client cannot authenticate to an autonomous access

第1题：

You have configured the Odyssey Access Client with a profile which has the "Disable Server Verification" setting cleared.What will be the result if the device certificate on the MAG Series device has expired and the user attempts to authenticate?（）

• A、The user will be instructed to call the network administrator.
• B、The user will fail authentication.
• C、The user will be prompted to install a new device certificate on the MAG Series device.
• D、The user will successfully authenticate and have full network access.

第2题：

Which of these is a benefit of using Network Admission Control instead of Cisco Identity Based Networking Services?（）

• A、NAC can authenticate using 802.1X and IBNS cannot
• B、NAC can ensure only compliant machines connect and IBNS cannot
• C、NAC can ensure access to the correct network resources and IBNS cannot
• D、NAC can manage user mobility and reduce overhead costs and IBNS cannot

第3题：

第4题：

If all client exclusion policies are enabled，on which number of tries will 802.1x authentications be excluded using controller-based access points？（）

• A、five
• B、three
• C、six
• D、four

第5题：

In a deployment using the lightweight access points， clients set up to authenticate with EAP-PEAPor EAP-Cisco Wireless （LEAP） cannot authenticate. Upon inspection of the Failed Attempts reportyou see the following error： "Unknown network access server NAS."  What two problems can causethis type of failure？（）

• A、misconfigured IP address of the AAA server on the wireless controller
• B、misconfigured IP address of the wireless LAN controller on the AAA server
• C、misconfigured EAP type on the wireless LAN controller
• D、misconfigured shared secret on the wireless LAN controller
• E、misconfigured EAP type on the AAA server

第6题：

A users Junos Pulse client uses 802.1X to access a wired network and is failing to authenticate. You run a packet capture from the users PC and notice that immediately after the client machine sends an EAPoL-start packet, an EAP-failure packet is returned. You review the RADIUS troubleshooting logs on the MAG Series device and do not see any authentication attempts from the user. Other users on the same Ethernet switch are successfully authenticating. Which device is sending the EAP-failure packet to the workstation?（）

• A、The RADIUS server
• B、The EAPoL server
• C、The workstation's network adapter
• D、The Ethernet switch

第7题：

In the Company wireless LAN，  what is the function of the Service Set Identifier （SSID）？（）

• A、 The SSID must match on both the Company client and the Company access point and provides  MAC Address Authentication to authenticate the client to the access point.
• B、 The SSID should be configured on the Company client site only and provides data-privacy  functions and authentication to the access point.
• C、 The SSID must match on both the Company client and the Company access point and provides encryption keys for authentication to the access point.
• D、 The SSID must match on both the Company client and the Company access point. The SSID is  advertised in plain-text in the access point beacon messages.  
• E、 None of the other alternatives apply

第8题：

第9题：

Client association using EAP-Cisco Wireless （LEAP） is failing， but EAP-PEAP is functioning on an autonomous access point. Which of the following needs to be enabled on the access point so EAP-Cisco Wireless （LEAP） is enabled？（）

• A、open authentication plus MAC
• B、open authentication plus EAP
• C、shared key
• D、network EAP

第10题：

A wireless client cannot connect to an 802.11b/g BSS with a b/g wireless card. The client section of the access point does not list any active WLAN clients. What is a possible reason for this?（）

• A、The incorrect channel is configured on the client.
• B、The client's IP address is on the wrong subnet.
• C、The client has an incorrect pre-shared key.
• D、The SSID is configured incorrectly on the client.