Pr? Parez you free solutions for s? Safety? for Systems Engineers Exam - 642-56
While you’re looking to prepare yourself for cisco 642-566 exam. Here are some multiple choice questions and answers to evaluate yourself.
Question: 1
Which one of the following elements is essential to perform events analysis and correlation?
A. Implementation of a centralized provisioning system, such as Cisco Security Manager
B. Elimination of all the true positive events
C. Time synchronization between all the devices
D. Implementation of different security controls and platforms when using the defense-in-depth approach
Answer: C
Question: 2
Refer to the following Cisco products, which two can provide a captive portal to authenticate wireless users? (Choose two.)
A. Cisco NAC Profiler
B. WLAN Controller
C. Cisco NAC Guest Server
D. Cisco ASA
Answer: B, C
Question: 3
Which two of these statements describe features of the RSA keys? (Choose two.)
A. The private key only encrypts.
B. The private key only decrypts.
C. The public key both encrypts and decrypts.
D. The private key both encrypts and decrypts.
Answer: C, D
Question: 4
Which item will be performed on Cisco IP Phones so that they can authenticate it before obtaining network access?
A. AAA client
B. Cisco Security Agent
C. IEEE 802.1X supplicant
D. one-time password
Answer: C
Question: 5
Can you tell me which one of the following platforms has the highest IPsec throughput and can support the highest number of tunnels?
A. Cisco 7200 NPE-GE+VSA
B. Cisco 7200 NPE-GE+VAM2+
C. Cisco ASR 1000-5G
D. Cisco 6500/7600 + VPN SPA
Answer: D
Question: 6
You are the network consultant from Company.com. Please point out two functions of Cisco Security Agent.
A. Authentication
B. Control of executable content
C. Resource protection
D. Spam filtering
Answer: B, C
Question: 7
In today's typical single-tier firewall system, which three security components can be found? (Choose three.)
A. Stateful Packet Filtering with Application Inspection and Control
B. IPS
C. Network Admission Control
D. Application proxy
Answer: A, B, D
Question: 8
Secure Sockets Layer (SSL) is a cryptographic protocol that provides security and data integrity for communications over TCP/IP networks such as the Interne. When SSL uses TCP encapsulation on Cisco SSL VPNs, the user's TCP session is transported over another TCP session, thus making flow control inefficient if a packet is lost. Which is the best solution of this problem?
A. Cisco Secure Desktop
B. DAP
C. DTLS
D. SSL traversal
Answer: C
Question: 9
Cisco NAC Appliance (formerly Cisco Clean Access) is an easily deployed Network Admission Control (NAC) product that allows network administrators to authenticate, authorize, evaluate, and remediate wired, wireless, and remote users and their machines prior to allowing users onto the network. It identifies whether networked devices such as laptops, desktops, and other corporate assets are compliant with a network's security policies, and it repairs any vulnerabilities before permitting access to the network. Which three policy types can be assigned to a network user role in the Cisco NAC Appliance architecture? (Choose three.)
A. Allowed IP address ranges
B. Session duration
C. Network port scanning plug-ins
D. VPN and roaming policies
Answer: B, C, D
Tag
