ACMA 8 Chapter 6|Complete Questions with A+
Graded Answers
How many phases does the user have to go through for connecting to a WLAN?
five phases
2 multiple choice options
What do all devices perform first when connecting to a WLAN LAN?
802.11 standard negotiation
1 multiple choice option
What is on the Guest WLAN association phase 2?
IP address acquirement
3 multiple choice options
What is on the Guest WLAN association phase 3?
L3 authentication using captive portal (web browser)
3 multiple choice options
What is on the Guest WLAN association phase 4?
Security policy
3 multiple choice options
What do the Security policies control?
VLAN assignment
Role assignment
Bandwith controls
Network access restrictions
Firewall
What is on the Guest WLAN association phase 5?
Network access
3 multiple choice options
Why are guest WLAN frames transmitted in the clear?
Because even though they may use L3 auth, they use no inherent encryption.
2 multiple choice options
What is on the Employee WLAN association phase 2?
L2 WPA Authentication using PSK or 802.1x/EAP
3 multiple choice options
, What is on the Employee WLAN association phase 3?
Th network assigns an IP address for the client via DHCP
3 multiple choice options
What is on the Employee WLAN association phase 4?
Security Policy is applied
3 multiple choice options
What is on the Employee WLAN association phase 5?
User receives network access
3 multiple choice options
What management frames are used by the client to connect to a WLAN?
Beacon, Probe request, Probe response
Auth request/response
Association request/response
How does One-Way authentication work?
The user provides a credential to an Auth server, the credential gets verified against a database in the
server.
1 multiple choice option
What is the main security concern when using One-Way authentication ?
That it maked the WLAN client open to bogus AP Spoofing attacks
1 multiple choice option
What is used to track each connected endpoint's status by the AP?
AID (Association ID)
What are x.509 certificates used for?
They're installed on each endpoint to properly validate RADIUS identity.
1 multiple choice option
Where should PEAP/MSCHAPv2 be configured?
On the RADIUS server and on each endpoint
What happens if server validation is turned off on PEAP-MSCHAPv2?
PEAP-MSCHAPv2 works as a One-Way authentication method
1 multiple choice option
Graded Answers
How many phases does the user have to go through for connecting to a WLAN?
five phases
2 multiple choice options
What do all devices perform first when connecting to a WLAN LAN?
802.11 standard negotiation
1 multiple choice option
What is on the Guest WLAN association phase 2?
IP address acquirement
3 multiple choice options
What is on the Guest WLAN association phase 3?
L3 authentication using captive portal (web browser)
3 multiple choice options
What is on the Guest WLAN association phase 4?
Security policy
3 multiple choice options
What do the Security policies control?
VLAN assignment
Role assignment
Bandwith controls
Network access restrictions
Firewall
What is on the Guest WLAN association phase 5?
Network access
3 multiple choice options
Why are guest WLAN frames transmitted in the clear?
Because even though they may use L3 auth, they use no inherent encryption.
2 multiple choice options
What is on the Employee WLAN association phase 2?
L2 WPA Authentication using PSK or 802.1x/EAP
3 multiple choice options
, What is on the Employee WLAN association phase 3?
Th network assigns an IP address for the client via DHCP
3 multiple choice options
What is on the Employee WLAN association phase 4?
Security Policy is applied
3 multiple choice options
What is on the Employee WLAN association phase 5?
User receives network access
3 multiple choice options
What management frames are used by the client to connect to a WLAN?
Beacon, Probe request, Probe response
Auth request/response
Association request/response
How does One-Way authentication work?
The user provides a credential to an Auth server, the credential gets verified against a database in the
server.
1 multiple choice option
What is the main security concern when using One-Way authentication ?
That it maked the WLAN client open to bogus AP Spoofing attacks
1 multiple choice option
What is used to track each connected endpoint's status by the AP?
AID (Association ID)
What are x.509 certificates used for?
They're installed on each endpoint to properly validate RADIUS identity.
1 multiple choice option
Where should PEAP/MSCHAPv2 be configured?
On the RADIUS server and on each endpoint
What happens if server validation is turned off on PEAP-MSCHAPv2?
PEAP-MSCHAPv2 works as a One-Way authentication method
1 multiple choice option
