350-401 Questions and Answers

Question # 6

Which lag/profile on a Cisco Catalyst 9800 Series WLC must be modified to allow Cisco ISE to dynamically assign VLANs to users on an 802.1X-based SSID?

interface lag

site tag

WLAN profile

policy profile

Full Access

Question # 7

Which two benefits result from a network design mat uses small and repeatable sections? (Choose two.)

lower monitoring requirements

low latency

scalability

quick failure isolation

improved throughput

Full Access

Question # 8

Which technology collects location information through data packets received by the APs instead of using mobile device probes?

detect and locate

FastLocate

hyperlocation

RF fingerprinting

Full Access

Question # 9

Drag and drop the automation characteristics from the left to the corresponding tools on the right.

Full Access

Question # 10

Drag and drop the snippets onto the blanks within the code to create an EEM script that adds an entry to a locally stored text file with a timestamp when a configuration change is made. Not all options are used.

Full Access

Question # 11

Which component transports data plane traffic across a Cisco SD-WAN network?

vSmart

vManage

cEdge

vBond

Full Access

Question # 12

How does Cisco DNA Center perform a network discovery?

using SNMP

using ICMP

through a DHCP server

using CDP with a seed IP address

Full Access

Question # 13

Drag and drop the REST API authentication methods from the left onto their descriptions on the right.

Full Access

Question # 14

An engineer must create a new SSID on a Cisco 9800 wireless LAN controller. The client has asked to use a pre-shared key for authentication. Which profile must the engineer edit to achieve this requirement?

WLAN

Policy

Flex

Full Access

Question # 15

Which method requires a client to authenticate and has the capability to function without encryption?

open

WEP

WebAuth

PSK

Full Access

Question # 16

With IGMPv2, which multicast group address does the IGMP querier use to send query messages to all hosts on the LAN?

239.0.0.2

224.0.0.1

239.0.0.1

224.0.0.2

Full Access

Question # 17

An engineer is reviewing a PCAP file that contains a packet capture of a four-way handshake exchange between a client and AP using WPA2 Enterprise Which EAPOL message validates and confirms that the client device has successfully Installed the GTK?

M4-Message

M3-Message

M2-Message

M1-Message

Full Access

Question # 18

Refer to the exhibit Which command set is required on router R1 to allow the network administrator to authenticate via RADIUS'?

Option A

Option B

Option C

Option D

Full Access

Question # 19

An engineer must configure a new 6 Ghz only SSID on a cisco catalyst 9800 series WLC, with these requirements:

Provide 802.11ax data rates for supported devices

All users authenticate using a certificate

Which wireless layer 2 security mode meets the requirements?

WPA2 Enterprise

WPA3 Personal

WPA2 Personal

WPA3 Enterprise

Full Access

Question # 20

What is a characteristics of Wi-Fi channels?

The 2 4-GHz balWMS§24 non-overlapping channels

Devices that connect to the same Wi-Fi channel reside in the same collision domain.

Wi-Fi channels are spaced 30 MHz apart.

The 5-GHz band offers 11 different channels for Wi-Fi clients

Full Access

Question # 21

What is a Type 1 hypervisor?

runs directly on a physical server and depends on a previously installed operating system

runs directly on a physical server and includes its own operating system

runs on a virtual server and depends on an already installed operating system

run on a virtual server and includes its own operating system.

Full Access

Question # 22

Refer to the exhibit. A POST /discovery request spawns an asynchronous task. After querying for more information about the task, the Cisco DNA Center platform returns the REST API response. What is the status of the discovery task?

restarted

failed

stopped

successful

Full Access

Question # 23

What is a characteristic of VXLAN?

It extends Layers 2 and Layer 3 overlay network over a Layer 2 underly.

It has a 12-byte packet header.

Its frame encapsulation is performed by MAC-in-UDP.

It uses TCP for transport

Full Access

Question # 24

How does NETCONF YANG represent data structures?

as strict data structures defined by RFC 6020

in an XML tree format

In an HTML format

as modules within a tree

Full Access

Question # 25

An engineer is implementing a new SSID on a Cisco Catalyst 9800 Series WLC that must be broadcast on 6 GHz radios. Users will be required to use EAP-TLS to authenticate. Which wireless Layer 2 security method is required?

WPA3 Personal

WPA3 Enterprise

WPA2 Personal

Full Access

Question # 26

Refer to the exhibit.

What does the error message relay to the administrator who is trying to configure a Cisco IOS device?

A NETCONF request was made for a data model that does not exist.

The device received a valid NETCONF request and serviced it without error.

A NETCONF message with valid content based on the YANG data models was made, but the request failed.

The NETCONF running datastore is currently locked.

Full Access

Question # 27

Which IEEE standard provides the capability to permit or deny network connectivity based on the user or device identity?

802. 1d

802.1x

802.1q

802.1w

Full Access

Question # 28

Full Access

Question # 29

A customer wants to use a single SSID to authenticate loT devices using different passwords. Which Layer 2 security type must be configured in conjunction with Cisco ISE to achieve this requirement?

Identity PSK

Fast Transition

Central Web Authentication

Cisco Centralized Key Management

Full Access

Question # 30