★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW 640-722 Exam Dumps (PDF & VCE):
Available on: https://www.certleader.com/640-722-dumps.html


It is more faster and easier to pass the Cisco 640-722 exam by using Exact Cisco CCNA - Wireless Associate - IUWNE questuins and answers. Immediate access to the Refresh 640-722 Exam and find the same core area 640-722 questions with professionally verified answers, then PASS your exam with a high score now.

2021 Dec ccna wireless 640-722 dumps:

Q41. - (Topic 5) 

The administrator has noticed that the configuration on a controller is different than in Cisco WCS. How can the administrator fix this issue? 

A. The configuration can be copied from the controller to the Cisco WCS or from the WCS to the controller. 

B. The configuration can be copied only from the Cisco WCS to the controller. 

C. The configuration can be copied only from the controller to the Cisco WCS. 

D. The controller must be removed from the Cisco WCS and then added again. 

Answer:

Explanation: 

The Copy and Replace AP feature is useful if you need to remove an access point from the network and replace it with a new access point. All of the access point information, such as AP mode, name, and map location needs to be copied from the old access point to the new access point. 

Reference: http://www.cisco.com/c/en/us/td/docs/wireless/wcs/7-0MR1/configuration/guide/WCS70MR1/ctrlcfg.html#wp1097509 


Q42. - (Topic 2) 

You are testing a new autonomous Cisco Aironet 1260 AP that has booted for the first time on the existing corporate network, which includes voice, data, and location services. 

How do you reach the GUI of the AP? 

A. HTTP to 10.0.0.1. 

B. HTTP to 192.168.1.1. 

C. HTTP to the DHCP address. 

D. HTTPS to 10.0.0.1. 

E. HTTPS to the 192.168.1.1. 

F. HTTPS to the DHCP address. 

Answer:

Explanation: 

Make sure DHCP is enabled on the network or DNS resolution is available. The access point must receive its IP address through DHCP or DNS resolution, and the GUI can be accessed by using HTTP to this address. 

Reference: http://www.cisco.com/c/en/us/td/docs/wireless/access_point/1260/quick/guide/ap1260getst art.html 


Q43. - (Topic 4) 

Cisco Client Management Frame Protection is running on a mobility group with two controllers. 

Which two MFP requirements protect the network? (Choose two.) 

A. forces clients to authenticate, using a secure EAP method only 

B. implements the validation of wireless management frames 

C. requires Cisco Compatible Extensions v5 

D. requires the use of a nonbroadcast SSID 

E. requires Cisco Compatible Extensions v4 

Answer: B,C 

Explanation: 

Client MFP encrypts class 3 management frames sent between APs and Cisco Compatible Extension version 5 (CCXv5) — capable client stations, so that both AP and client can take preventive action by dropping spoofed class 3 management frames (management frames) that are passed between an AP and a client station that is authenticated and associated). Client MFP leverages the security mechanisms defined by IEEE 802.11i to protect class 3 unicast management frames. The unicast cipher suite that is negotiated by the STA in the reassociation request's Robust Security Network Information Element (RSNIE) is used to protect both unicast data and class 3 management frames. An AP in workgroup bridge mode, repeater mode, or no-root bridge mode must negotiate either Temporal Key Integrity Protocol (TKIP) or Advanced Encryption Standard-Cipher Block Chaining Message Authentication Code Protocol (AES-CCMP) to use Client MFP. 

Management Frame Protection operation requires a wireless domain service (WDS). MFP is configured at the wireless LAN solution engine (WLSE), but you can manually configure MFP on an AP and WDS. 

Reference: http://www.cisco.com/c/en/us/td/docs/routers/access/3200/software/wireless/3200Wireless ConfigGuide/ManageFrameProt.html 


Q44. - (Topic 4) 

Which wireless client attempts to authenticate by using 802.1X? 

A. supplicant 

B. authenticator 

C. EAP 

D. RADIUS 

Answer:

Explanation: 

802.1x is an Institute of Electrical and Electronics Engineers (IEEE) standard that provides an authentication framework for WLANs. 802.1x uses the Extensible Authentication Protocol (EAP) to exchange messages during the authentication process. The authentication protocols that operate inside the 802.1x framework that are suitable for wireless networks include EAP-Transport Layer Security (EAP-TLS), Protected EAP (PEAP), and EAP-Tunneled TLS (EAP-TTLS). These protocols allow the network to authenticate the client while also allowing the client to authenticate the network. 802.1x authentication consists of three components: 

. The supplicant, or client, is the device attempting to gain access to the network. You can configure the Arubauser-centric network to support 802.1x authentication for wired users as well as wireless users. 

. The authenticator is the gatekeeper to the network and permits or denies access to the supplicants. 

. The Arubacontroller acts as the authenticator, relaying information between the authentication server and supplicant. The EAP type must be consistent between the authentication server and supplicant and is transparent to the controller. 

Reference: http://www.arubanetworks.com/techdocs/ArubaOS_60/UserGuide/802.1x.php 


Q45. - (Topic 7) 

An engineer is troubleshooting why wireless clients have not been able to connect to the network. Where would an engineer verify the total number of excluded clients in the last day? 

A. Security > Miscellaneous 

B. Security > Rogues 

C. Alarms 

D. Events 

E. Clients > Troubleshoot 

F. Access Points 

Answer:


Up to date ccna wireless 640-722 book:

Q46. - (Topic 4) 

In a network with a deployed Cisco WLC, which two entities must be configured with the shared secret key for 802.1X authentication? (Choose two.) 

A. WLC 

B. RADIUS server 

C. AP 

D. supplicant 

E. wireless client 

Answer: A,B 

Explanation: 

The WLC needs to be configured in order to forward the user credentials to an external RADIUS server. The external RADIUS server then validates the user credentials and provides access to the wireless clients. 

Reference: http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/69730-eap-auth-wlc.html 


Q47. - (Topic 6) 

Instructions 

. THIS TASK DOES NOT REQUIRE DEVICE CONFIGURATION. 

. To access the multiple-choice question, click on the numbered box on the left of the top panel. 

. There is one multiple-choice question with this task. Be sure to answer the question before selecting the Next button. 

Scenario 

A wireless LAN controller, AP, IOS switch, and wireless client have been properly configured. Use the exhibits to answer the question. 

When a client associates to ExamSSlD, which network address will be assigned? 

A. The IP address assigned will be based on the AP network assignment of 10.10.10.0. 

B. The IP address assigned will be based on the AP network assignment of 172.16.23.0. 

C. The IP address will be assigned in a round-robin format based on the 172.16.12.0, 172.16.23.0, 192.168.14.0 address pools. 

D. The IP address will be assigned in a round-robin format based on the 172.16.12.0, 192.168.14.0, 192.168.25.0 pools. 

E. The IP address will be assigned in a round-robin format based on the 172.16.12.0, 172.16.23.0, 192.168.14.0, 192.168.25.0 pools. 

Answer:

Explanation: 

The IP addresses will be assigned round robin to the three interface groups, which we can see are vlan20, vlan40, and vlan50. From the WLC-interfaces tab we see that the IP addresses assigned to these 3 interfaces are 172.16.12.10, 172.16.14.10, and 192.168.25.10, respectively. 


Q48. - (Topic 4) 

Which four parameters must be configured for local EAP-FAST on the controller? (Choose four.) 

A. authority ID 

B. authority ID Information 

C. client key 

D. PAC 

E. server key 

F. TTL for PAC 

G. monitor key 

H. NTP source 

Answer: A,B,E,F 

Explanation: 

EAP-FAST is designed to speed re-authentication when a station roams from one AP to another. Here are the parameters that can be configured: 

* Server Key (in hexadecimal): The key (in hexadecimal characters) used to encrypt and decrypt PACs. 

* Time to Live for the PAC: Enter the number of days for the PAC to remain viable. The valid range is 1 to 1000 days, and the default setting is 10 days. 

* Authority ID (in hexadecimal): Enter the authority identifier of the local EAP-FAST server in hexadecimal characters. It is possible to enter up to 32 hexadecimal characters, but an even number of characters must be entered. This will identify the controller as the emitter of the PAC. 

* Authority ID Information: Enter the authority identifier of the local EAP-FAST server in text format. 

* Anonymous Provision: Enable this setting to allow anonymous provisioning. This feature allows PACs to be sent automatically to clients that do not have one during PAC provisioning. If this feature is disabled, PACS must be manually provisioned. Disable this feature when using EAP-FAST with certificates. The default setting is enabled. 


Q49. - (Topic 5) 

Which three severity levels are in the Cisco WCS alarm dashboard? (Choose three.) 

A. Critical 

B. Flash 

C. Major 

D. Minor 

E. Trivial 

F. Urgent 

Answer: A,C,D 

Explanation: 

Alarms are color coded as follows: . 

Red — Critical Alarm . 

Orange — Major Alarm . 

Yellow — Minor Alarm 

The Alarm Summary displays the number of current critical, major, and minor alarms. 

Reference: http://www.cisco.com/c/en/us/td/docs/wireless/wcs/6-0/configuration/guide/WCS60cg/6_0event.html 


Q50. - (Topic 1) 

Which device divides a signal between two antennas? 

A. splitter 

B. lightening arrestor 

C. attenuator 

D. amplifier 

Answer:

Explanation: 

A splitter causes insertion loss and divides available power between two antennas.